n them right away versus
crutching them along.
joe
--
O'Reilly Active Directory Third Edition - http://www.joeware.net/win/ad3e.htm
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Al
MulnickSent: Tuesday, June 27, 2006 2:51 PMTo:
ActiveDir@mail.activedir.orgSubj
alf Of Phil RenoufSent: Tuesday, June 27, 2006 1:04 PM
To: ActiveDir@mail.activedir.org
Subject: Re: [ActiveDir] pw reset domain account
I think a webpage where your admin or your manager can go in under their ID on their PC and submit a request to the system to reset your password, or to automatically
fSent: Tuesday, June 27, 2006 1:04 PM
To: ActiveDir@mail.activedir.org
Subject: Re: [ActiveDir] pw reset domain account
I think a webpage where your admin or your manager can go in under their ID on their PC and submit a request to the system to reset your password, or to automatically reset your account might be
lf Of Phil
RenoufSent: Tuesday, June 27, 2006 1:04 PMTo:
ActiveDir@mail.activedir.orgSubject: Re: [ActiveDir] pw reset domain
account
I think a webpage where your admin or your manager can go in under their ID
on their PC and submit a request to the system to reset your password, or to
automati
win/ad3e.htm
From: [EMAIL PROTECTED] [mailto:
[EMAIL PROTECTED]] On Behalf Of AWS
Sent: Monday, June 26, 2006 10:34 AM
To: ActiveDir@mail.activedir.org
Subject: Re: [ActiveDir] pw reset domain account
Yes, the latter. This is an account a user would use to login with, then the pw reset websi
PROTECTED] On Behalf Of
AWSSent: Monday, June 26, 2006 10:34 AMTo:
ActiveDir@mail.activedir.orgSubject: Re: [ActiveDir] pw reset domain
account
Yes, the latter. This is an account a user would use to login with,
then the pw reset website would automatically run. The website has
challenge/resp
Not a vendory type person, but the password reset tools that I have seen do indeed use a hook into the GINA to provide a way to hit the password reset utility without logging on to the workstation.
This may not be an ideal solution to implement now though since my understanding is that the GINA
Return Receipt
Your RE: [ActiveDir] pw reset domain account
document
e-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Rob MOIR
Sent: 26 June 2006 16:28
To: ActiveDir@mail.activedir.org; ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] pw reset domain account
What sort of questions? If you ask people to pick a secret question then
you
e.
Guy
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On
Behalf Of AWS
Sent: Monday, June 26, 2006 9:34
AM
To: ActiveDir@mail.activedir.org
Subject: Re: [ActiveDir] pw reset
domain account
Yes, the latter. This is
an account a user would use to login with, then the pw reset web
lly be logging in THAT often.
What's to stop a 'random passer by' getting on a terminal and playing with this
account?
-Original Message-
From: [EMAIL PROTECTED] on behalf of AWS
Sent: Mon 26/06/2006 15:34
To: ActiveDir@mail.activedir.org
Subject: Re: [ActiveDir] pw reset
Been reading this and, like the other folk,
am unsure as to why a generic user account / password combination must be used
in lieu of the passworded account that the user is attempting to change.
But, be that is it may. I’ll take
it for granted that it is an unavoidable situation.
Yes, the latter. This is an account a user would use to login with, then the pw reset website would automatically run. The website has challenge/response Q's for them to get their individual acct reset.
On 6/25/06, joe <[EMAIL PROTECTED]> wrote:
Err, maybe you can fill in more detail. I am not q
Nah, you can't lock the process down enough to mitigate enough of the risks for my pallette.
The thing is, I think you're talking about allowing an account to logon locally to a workstation but be locked down like a kiosk account. I had that same conversation with some folks a while back. Inte
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:ActiveDir-
> [EMAIL PROTECTED] On Behalf Of AWS
> Sent: 25 June 2006 23:35
> To: ActiveDir@mail.activedir.org
> Subject: [ActiveDir] pw reset domain account
>
> There's a proposal at my company for a self service password reset
> websi
Err, maybe you can fill in more detail. I am not quite sure
what you are saying. Are you saying there is a generic ID to log into the
website and it can reset anyone's password or are you saying there is a generic
ID with rights to reset anyone's password or
Either of those solutions w
I don't even need to give you a "black hat tool" scenario, just a human one:
You're checking your Event Logs one day and see that
DOMAIN\SharedAccount has accessed a file share that it shouldn't have.
Given the fact that everyone in your enterprise has the password for
DOMAIN\SharedAccount, how a
17 matches
Mail list logo