Forum Search:
Forum.Brain-Cluster.com: Brain Cluster Technical Forum
Ultimate forum for Technical Discussions

Home » Microsoft » Windows Server » Active Directory » Change expired passwords with LDAP
Change expired passwords with LDAP [message #398712] Wed, 24 February 2010 02:45 Go to next message
Patrick Cervicek  is currently offline Patrick Cervicek  Germany
Messages: 1
Registered: February 2010
Junior Member
We created a web form which allows users to change their password. We
used the information in this KB article [1]. Usually it works, but when
the userpassword is expired we get this error message.:

> [LDAP: error code 49 - 80090308: LdapErr: DSID-0C090334, comment:
AcceptSecurityContext error, data 532,

We do not want to use an administrative user to set a password. What do
we need to change in our web form, so the user can change the password
himself? Why can a user change an expired password on a desktop?


Patrick

"How To Change a Windows 2000 User's Password Through LDAP"
[1]: http://support.microsoft.com/kb/269190
Re: Change expired passwords with LDAP [message #400238 is a reply to message #398712] Thu, 25 February 2010 23:30 Go to previous message
Joe Kaplan  is currently offline Joe Kaplan  United States
Messages: 88
Registered: July 2009
Member
Unfortunately you can't do this via LDAP for the reason you've discovered.
Interactive login works differently. If you can bind with a service account,
you may still be able to do a password change on the users account if you
have the old an new passsord.

--
Joe Kaplan-MS MVP Directory Services Programming
Co-author of "The .NET Developer's Guide to Directory Services Programming"
http://www.directoryprogramming.net
"Patrick Cervicek" <patrick@expires201004.spam.hs-esslingen.de> wrote in
message news:hm2sff$jk0$1@news.belwue.de...
> We created a web form which allows users to change their password. We used
> the information in this KB article [1]. Usually it works, but when the
> userpassword is expired we get this error message.:
>
> > [LDAP: error code 49 - 80090308: LdapErr: DSID-0C090334, comment:
> AcceptSecurityContext error, data 532,
>
> We do not want to use an administrative user to set a password. What do we
> need to change in our web form, so the user can change the password
> himself? Why can a user change an expired password on a desktop?
>
>
> Patrick
>
> "How To Change a Windows 2000 User's Password Through LDAP"
> [1]: http://support.microsoft.com/kb/269190
Previous Topic:New Thread On Old Unresolved One - Off-Line Files Sync Issue
Next Topic:AD Recycle Bin - Multiple Domains
Goto Forum:
  


Current Time: Wed Jan 17 05:33:43 MST 2018

Total time taken to generate the page: 0.03631 seconds
.:: Contact :: Home ::Sitemap::.

Powered by: FUDforum 3.0.0RC2.
Copyright ©2001-2009 FUDforum Bulletin Board Software