AD User Password reset Tool

It has always been an issue to set up a self-service web facing Password Reset Tool.

Well if you have an Exchange server running let’s say 2010 SP1 or higher, you have all you need to make it work Smile

The only thing you need is to make an extra registry key entry in your CAS server. Which is in small organizations the same server as the Exchange backend server.

Solution :

  1. On the Client Access Server (CAS), click Start > Run and type regedit.exe and click OK.
  2. Navigate to HKLM\SYSTEM\CurrentControlSet\Services\MSExchange OWA
  3. Right click the MSExchange OWA key and click New > DWord (32-bit)
  4. The DWORD value name is ChangeExpiredPasswordEnabled and set the value to 1.
    Note: The values accepted are 1 (or any non-zero value) for “Enabled” or 0 or blank / not present for “Disabled”
  5. After you configure this DWORD value, you must reset IIS. The recommended method to reset IIS is to use IISReset /noforce from a command prompt.

Here is the result !

image

As of now your users can reset their passwords themselves Winking smile

PS : To check the Exchange version you can do this using the Outlook client.

Press CRTL + right click on the Outlook Icon in the system tray.

Select the Conntection status.

image

And read out the version column.

image

Or you can check the management console

image

Or you can use Powershell to do the job …

You can find the build numbers here :

http://technet.microsoft.com/en-us/library/hh135098(v=exchg.150).aspx

Enjoy !

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: