Changing User passwords for non Mac users

[detinater]

So basically this would be simple you would think, I’ve looked around everywhere but haven’t found much of a solution.

Problem:

Open Directory is used for VPN authentication via a Juniper device. Not all users in my domain are on Macs but all have OD account. Passwords are set to rotate every 90 days but I need a way for non-Mac users to be able to change their passwords. Preferably like a website or utility that can be run while they are in their VPN session.

Surely someone has dealt with this, are their any solutions out there?

Bit about my network:

SSL LDAP
Kerberos Realm
No Anon lookups in LDAP
Any unnecessary ports are locked down.

[sunnyape]

Using dscl might help. You could make a script or app that asks for their password then resets it. Something like :

[code]#!/bin/bash

userName=”/usr/bin/whoami”

echo “Please enter your new password”
read thePassword

/usr/bin/dscl /LDAPv3/yourdomain.com passwd /Users/$userName “$thePassword”[/code]

[arekdreyer]

If this is Mac OS X Server v10.6, there’s a really cool feature:

Server Admin > Web > Sites > Web Services >
Allow users to: change their password

This is pretty big.

[Author]

Posts