hi michel, > (and the check box to set the "change password a next logon" bit is grayed. i think it's a feature! right click the user select properties/account and you can force the user to change the password at next logon. the second way is to delegate access to the Account Options and the check box is not grayed. i think that is not the best way.
i have delegated the reset password per script. imo it works when you delegate pwdLastSet and Reset Password. try the delegation witzard. hans --- "Bruyere, Michel" <[EMAIL PROTECTED]> wrote: > Hi, > I delegated the password management to the > technicians group. > There is a glitch though, they can't seem to be able > to reset password > even if I gave the permission to do so (on the OU). > All the get is > Access denied (and the check box to set the "change > password a next > logon" bit is grayed. > The permissions have been set in the security tab, > using the Advanced > view of ADUC. > > Here are the security settings for the Technicians > group: > > reset password > change password > read pwdLastSet > write pwdLastSet > read LockoutTime > write LockoutTime > read accountrestrictions > > > What I'm missing here? > > > Thanks > > > List info : http://www.activedir.org/List.aspx > List FAQ : http://www.activedir.org/ListFAQ.aspx > List archive: > http://www.mail-archive.com/activedir%40mail.activedir.org/ > __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
