At my school we automatically create Windows 2k accounts for each student
and set the "require user to change password on next login" option. The
problem I have is that we have a student intranet that students need to
access. It is protected with basic authentication. If a student tries to
access the web site and has never logged on to a local computer to change
the pw, then they can't access the site. This is a problem for online
students who will never come on campus.

Is there a way to reconfig my authentication and security so that when a
student logs in, it asks them to change their password, or give them the
option to change it.

I am using Windows 2000 sp3 and IIS 5.

Thanks,
Michael Shiver
Columbus Technical College

On Wed, 28 Apr 2004 13:04:44 -0400, "mshiver"
[quoted text, click to view]

Easiest is to change from Basic to Windows Integrated.

Easiest solution is to configure the password change pages in IIS. The
following KB article provides instructions for configuring this.
http://support.microsoft.com/?id=269082

If you're not already I would suggest using SSL and configuring the
password change flags to only allow secure connections.

~Eric
This posting is provided "AS IS" with no warranties, and confers no rights.