Re: Is there any way to force setpassword API call to be validated by Windows passwo

From: Joe Richards [MVP] (humorexpress_at_hotmail.com)
Date: 02/05/04

• Next message: Joe Richards [MVP]: "Re: How to change reply message for password length"
• Previous message: Matthew Swanson: "Re: Restrict logon to certain workstation"
• In reply to: glchen: "Is there any way to force setpassword API call to be validated by Windows passwo"
• Next in thread: MJC: "Re: Is there any way to force setpassword API call to be validated by Windows passwo"
• Messages sorted by: [ date ] [ thread ]

---

Date: Thu, 5 Feb 2004 02:13:10 -0500

A subset of the rules are enforced on set versus change, this is so admins
can't do a quick reset without having to worry about histories, etc. You can
write a password filter for the DCs that enforces these rules or you can use
the changepassword api or you can enforce the checks in your code.

-- 
www.joeware.net
"glchen" <anonymous@discussions.microsoft.com> wrote in message
news:a36401c3eb5f$ce039e70$a501280a@phx.gbl...
> Is there any way to force setpassword API call to be
> validated by Windows password policies?
>
> Background:
> There are two AD programmatic and GUI interfaces to update
> AD password. One is to "change password" and the other is
> to "reset password". Change password requires the old
> password/newpassword.  Reset(set) password does not
> require the old password.
> AD password policy enforcement seems to only impact on the
> change password cases. "Reset password" seems to bypass
> the checking of password policy settings
>
> I implemented a self-service password update website which
> allows users to reset password if users provide correct
> security data (so called attribute-based authentication).
> This self-service password uses "set password" API (not
> change password) since self-service password website is
> mainly used by the users who forgot his password or his
> password expired (use attribute-base authentication).
>

---

• Next message: Joe Richards [MVP]: "Re: How to change reply message for password length"
• Previous message: Matthew Swanson: "Re: Restrict logon to certain workstation"
• In reply to: glchen: "Is there any way to force setpassword API call to be validated by Windows passwo"
• Next in thread: MJC: "Re: Is there any way to force setpassword API call to be validated by Windows passwo"
• Messages sorted by: [ date ] [ thread ]

---

Relevant Pages How should I fire Abort and Reset SCSI commands? ... I need to send Reset and Abort SCSI commands ... How can I do so using the DeviceIoControlAPI? ... DWORD dwIoControlCode, ... Reset and other SCSI Task Management functions? ... (comp.periphs.scsi) Re: Java with Bluetooth ... When you reset the serial you thereby kill all connections including ... The poor little API doesn't know so you go to IO timeouts ... > it get's the command from a bluetooth mobile. ... (comp.lang.java.programmer) Re: Java with Bluetooth ... I don't reset the Serial, I just send a reset to the bluetooth ... the connection work. ... >>Api working on my windows platform. ... (comp.lang.java.programmer) Re: Close #FNbr ... The error message says that the file is in use by another application ... Reset closes all other open files and I do not want to do this. ... But Rest do finally close it and allows the file size routine and any ... If you say use API Read and Write, then I have to say, I have a ... (microsoft.public.vb.general.discussion)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(10)