reset password/must change at next logon

[Blake]

We have delegated the 'reset password' authority to our helpdesk. Problem
is, they are abusing this function by changing the password but NOT checking
the box that says 'user must change password at next logon'.

Is there any way to grant the 'reset password' ability but REQUIRE that the
'must change password box be checked?

Thanks
Blake

 

[Danny Sanders]

Written company policy that outlines the steps to be taken if this action is
not taken?

Seems to me like the help desk is not following directions.

Technology can only do so much. Then it is up to the company to fill in the
gaps with a company policy.

hth
DDS W 2k MVP MCSE

 

[Blake]

You are 100% correct. However, when you work in the 'black hole of
stupidity' (nothing can escape)...

I have considered using an asp/adsi interface where I can have more control
That is one idea.

Thanks for your reply

Blake

 

[Joe Richards [MVP]]

Do the reset through a COM+ object or web page, don't give built-in rights to do it. AD doesn't have business
rules/triggers so you can't natively define things like this.