Re: LDAP Query for "User Cannot Change Password"
From: Ulf B. Simon-Weidner [MVP] (nospam2-ulf_at_usw-consulting.com)
Date: 08/26/04
- Next message: Ulf B. Simon-Weidner [MVP]: "Re: Think I made a big mistake while setting up AD"
- Previous message: sgarritano: "Re: Think I made a big mistake while setting up AD"
- In reply to: anonymous_at_discussions.microsoft.com: "Re: LDAP Query for "User Cannot Change Password""
- Next in thread: Al Mulnick: "Re: LDAP Query for "User Cannot Change Password""
- Reply: Al Mulnick: "Re: LDAP Query for "User Cannot Change Password""
- Messages sorted by: [ date ] [ thread ]
Date: Thu, 26 Aug 2004 14:05:17 -0700
"anonymous@discussions.microsoft.com"
<anonymous@discussions.microsoft.com> wrote in message
news:0df801c48bac$e2400a20$a601280a@phx.gbl:
> Thank you for the input but it did not return any answers
> at all. Any other ideas would be greatly appreciated.
> Here is my Query String
> (&(objectCategory=person)(objectClass=user)
> (userAccountControl:1.2.840.113556.1.4.803:=64))
>
Sorry - mixed that up. As Joe mentiones it's set in the ACLs, so
there's no LDAP Query you can use, but you'd be able to script that but
it'll be a lot of work (you need to run a vbs against the user, get the
security describor, get the dacls, enumerate the acls and verify which
has the option set.
-- Gruesse - Sincerely, Ulf B. Simon-Weidner
- Next message: Ulf B. Simon-Weidner [MVP]: "Re: Think I made a big mistake while setting up AD"
- Previous message: sgarritano: "Re: Think I made a big mistake while setting up AD"
- In reply to: anonymous_at_discussions.microsoft.com: "Re: LDAP Query for "User Cannot Change Password""
- Next in thread: Al Mulnick: "Re: LDAP Query for "User Cannot Change Password""
- Reply: Al Mulnick: "Re: LDAP Query for "User Cannot Change Password""
- Messages sorted by: [ date ] [ thread ]
