I administer an organization that uses a Microsoft domain (with an Exchange box), but also has many remote users that are not on the domain. Right now, I maintain the passwords for the users (and they don't change), but I am sure that doing this opens us up to gaping security breaches. My question is: what are the best practices for password changing for remote users that are not on the domain i.e. laptop users. If I set it so that each user maintains their own password, what if the user works 50 miles away and loses track of their password?
Thanks for any input,