We have a Windows 2000 domain with both Windows 2000 and Windows 2003 servers and Windows 2000 and Windows XP workstations. User passwords are configured to expire every 45 days, so I often don't know a users password. If I need to add an application, printer, setting, etc. to the users PC I have to change the users password, login, make my changes, then set their password to change the next time they logon, then communicate the current password to them. This is a huge pain when I have several machines to work on.
We are using roaming profiles and have a Default User folder in the Netlogon share that sets most of the default settings, but we have many applications that must be configured from within the users profile to function properly.
Is there a way to impersonnate the user that I am not aware of?
How do you handle this situation?