richardchesterton
asked on
netusersetinfo as a standard user?
We have a web application running in IIS/Coldfusion.
One of the requirements of the app is that users can change their domain passwords from within the web app. This is necessary as not all users of the app will be domain users (ie do not log onto machines on the domain, they authenticate agaisnt the domain solely for acces to the app).
We are using HP ProtectTools authentication services for domain authentication, meaning that all password functions must use their PwdGenUtil.dll.
Our web developer has written the code to change passwords using the dll and thisworks perfectly when logged in as a user with domain administration privileges, however it fails with an 'access denied' erro when run as a standard user (we have put the same code into a vbscript and tested at the command prompt and get the same results there).
Having spoken to HP, their code uses 'netusersetinfo' to change the password. Reading up on this function, it would seem that this it requires admin rights on the domain to work.
Is there anything we can do to get this working as a standard user (short of granting all users the right to change passwords, which is not really an option!).
Thanks
Richard
One of the requirements of the app is that users can change their domain passwords from within the web app. This is necessary as not all users of the app will be domain users (ie do not log onto machines on the domain, they authenticate agaisnt the domain solely for acces to the app).
We are using HP ProtectTools authentication services for domain authentication, meaning that all password functions must use their PwdGenUtil.dll.
Our web developer has written the code to change passwords using the dll and thisworks perfectly when logged in as a user with domain administration privileges, however it fails with an 'access denied' erro when run as a standard user (we have put the same code into a vbscript and tested at the command prompt and get the same results there).
Having spoken to HP, their code uses 'netusersetinfo' to change the password. Reading up on this function, it would seem that this it requires admin rights on the domain to work.
Is there anything we can do to get this working as a standard user (short of granting all users the right to change passwords, which is not really an option!).
Thanks
Richard
ASKER
Hi Dave
Thanks for your response.
I forwarded your question t our web developer and his response was:
"yes, I believe so. I think that anytime any code has to interact with any system components, the only way to do this is through creating a COM object and passing the data around through that."
Hardly conclusive, but unfortunately that's the best I can get at this stage. If you have any way of clarifying this, please let me know (I am no expert in coding or web creation).
Thanks
Richard
Thanks for your response.
I forwarded your question t our web developer and his response was:
"yes, I believe so. I think that anytime any code has to interact with any system components, the only way to do this is through creating a COM object and passing the data around through that."
Hardly conclusive, but unfortunately that's the best I can get at this stage. If you have any way of clarifying this, please let me know (I am no expert in coding or web creation).
Thanks
Richard
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Dave Dietz