enforcing password history when using Directory.Entry.Invoke

J

Joe Kaplan

SetPassword does not enforce password history, as you are doing an
administrative password reset. If you want password history enforced, you
have to do a normal password change using ChangePassword. This requires
knowing the previous password.

Joe K.
 
J

Joe Richards [MVP]

It isn't a matter of the client side API, this is hard coded in the OS
itself. Password set operations regardless of how they get passed to AD
do not enforce history.

You may want to look at NetValidatePasswordPolicy API call, it might
help you out...

http://msdn2.microsoft.com/en-us/library/aa370661.aspx




--
Joe Richards Microsoft MVP Windows Server Directory Services
Author of O'Reilly Active Directory Third Edition
www.joeware.net


---O'Reilly Active Directory Third Edition now available---

http://www.joeware.net/win/ad3e.htm
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

identity impersonation definition in web.config 4
New here, Javascript password protect site not working on mobile 3
Password confirmation issue 5
Another Password Confirmation 2
System.DirectoryServies can not be found 2
Only one table shows up with the information 2
not enforcing authentication on some page 2
PyDev not saving Ipython History between sessions 0

Members online

No members online now.
Total: 27 (members: 0, guests: 27)
Robots: 227

Forum statistics

Threads
473,756
Messages
2,569,535
Members
45,008
Latest member
obedient dusk

Latest Threads

Top