Integrated Authentication Password Change

Discussions on webmail and the Professional version.
Post Reply
kdehl113
Posts: 38
Joined: Sun Sep 28, 2003 2:12 pm

Integrated Authentication Password Change

Post by kdehl113 » Sun Sep 18, 2005 6:34 pm

Hello,

When using Integrated Authentication against Active Directory, does the password chage option in webmail change the users domain password? If not, can this be setup?

MailEnable
Site Admin
Posts: 4441
Joined: Tue Jun 25, 2002 3:03 am
Location: Melbourne, Victoria Australia

Post by MailEnable » Tue Sep 20, 2005 12:49 am

The feature has not been released, but should be possible (feature has been dormant in the product for at least 2 years so there should be no need to upgrade).

As such, you could try add this to the postoffice.sys file for the related postoffice:

The postoffice.sys file is typically located under the respective postoffice directory from the path:

C:\Program Files\Mail Enable\Config\Postoffices\[Postoffice]


Example extract of relevant setting (Postoffice.sys):

Code: Select all

[General]
AllowIntegratedPasswordChanges=1

Where 1=On and Else = Off

If you have any problems, you most likely will need to turn on security auditing on your windows server to diagnose. It *may* also be necessary to grant the identity account for COM+ with enough priviledge to change user passwords (which could vary depending on your security model).

In the worst case the IME_ADMIN account (or whoever is running as the webmail COM+ identity) could need administrative rights to the domain to facilitate the password change - but this should not be necessary unless you have a complicated underlying security model/rights policies set for your domain.
Regards, Andrew

Post Reply