Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 658
  • Last Modified:

How do I force remote users to change Exchange 2003 passwords?

I recently changed the password policies on the server and have attempted to change our corporate policies to increase security.  I can change the password fine sicne I am on the same LAN as the servers.  When remote users have attempted to change their passwords, however, they receive an error message:

"Outlook 2007 Your Windows password could not be changed. To change your password, you must log on to your organization's network or contact your system administrator."  

Most employees are remote users so they are unable to connect to our LAN.  Some users have Outlook 2003; most have Outlook 2007.  Our company uses SBS2003.  

Is there anything that I can do so that these remote users can change their passwords?  Is Outlook incapable of referring to the mail server through Outlook Anywhere?
Outlook-PW-Change-Prompt.jpg
0
ICG
Asked:
ICG
  • 4
  • 3
1 Solution
 
Rob WilliamsCommented:
You can enable an option in Outlook Web Access that allows users to change their passwords:
http://www.petri.co.il/enable_password_changing_through_owa_in_exchange_2003.htm
0
 
ICGAuthor Commented:
RobWill- OWA is already setup to allow users to change their passwords.  In the attempt to increase security, I want to force users to change passwords.  
0
 
Rob WilliamsCommented:
You can force password expiry every 'x' days with group policy, but there is no built-in function to notify users that their passwords is about to expire unless they log into the domain either from the LAN or using a terminal server or remote desktop session.
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
ICGAuthor Commented:
RobWill- Doesn't that defeat the purpose of changing passwords for remote users?  Are there no workarounds at all for remote users?
0
 
Rob WilliamsCommented:
I am sorry I don't understand your question; "Doesn't that defeat the purpose of changing passwords for remote users?"

Password management for users that do not connect to the domain is quite limited with 2003.
0
 
ICGAuthor Commented:
The solution you submitted would be for users who are on the same LAN as the Exchange Server, correct?  At my organization, the employees are scattered throughout the states, so it would be nearly impossible to get all of the computers on the same LAN as the Exchange Server.  

Is this issue resolved in Exchange 2007?
0
 
Rob WilliamsCommented:
Most of the clients I have also use terminal services if they do not have a PC in the office. This way they get notified by the Terminal Server when they logon.

The forcing and notifying users that their password has changed is not really a function of Exchange, but rather Server 2003/2008 and I haven't seen any changes with 2008. What you would need is a utility that e-mails your clients to advise them. As mentioned it's not hard to force a password change, but without logging on to the system I don't know of a Microsoft way to advise the clients that their password is about to expire.

I have over the years seen third party tools that will do what you want. I don't know the names of any but Googling will return some options such as the following:
http://www.sysoptools.com/
0

Featured Post

Get expert help—faster!

Need expert help—fast? Use the Help Bell for personalized assistance getting answers to your important questions.

  • 4
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now