On 25/07/11 14:30 -0400, Conger,Keith wrote:
Hi,
Does anyone know if its possible to reset a password when using OpenLDAP
with Cyrus SASL to an 2008 Active Directory either through GSSAPI or
LDAPS. I've read that you you can change a password, but we need to be
able to reset with an administrative level account when a user forgets
their password.
Although I haven't used it, Windows Password Synchronization:
http://technet.microsoft.com/en-us/library/bb463208.aspx
might be an option.
Passwords can be changed directly against AD using a kerberos password
utility (kpasswd).
Based on what little experience I've had with AD 2003, Active Directory
does not seem to provide an LDAP based password changing function (Password
ExOp).
--
Dan White
