Start Free Trial
Allow users to change password using IIS
I have a server which hosts reports using SQL Reporting Services. The users have Windows accounts on the server hosting the reports, and authenticate using these credentials.
I would like to allow users to change their password / to force password changes every 60 days, and ensuring password complexity standards are met.
What would be the best way to achieve this?
Microsoft IIS Web Server
Microsoft SQL Server 2005
8/22/2022 - Mon
Can't be done without removing all of the security on the web server.
What do you mean by this?
That it cannot be done unless the Windows security model is replaced with another?
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
GET A PERSONALIZED SOLUTION
Ask your own question & get feedback from real experts
Find out why thousands trust the EE community with their toughest problems.
Point taken, thanks for briefly running through the underlying access model.
So by allowing users to change their password, would require elevated privileges for that process, which could put the server/domain at risk. Not a good thing.
Experts Exchange has (a) saved my job multiple times, (b) saved me hours, days, and even weeks of work, and often (c) makes me look like a superhero! This place is MAGIC!
Yes, you have it now. IIS is actually a very secure application if configured correctly and you stick with the default privileges for the process accounts.
Plans and Pricing
Certified Expert Program
© 1996-2023 Experts Exchange, LLC. All rights reserved. Covered by US Patent