Hello everyone,
Our University has finally decided to expire passwords. In prep for this, my testing has shown that if I do not limit grace logins, the user can login even after their password has expired.
I do not want to allow any grace logins. We do not want the novell change password screen to come up at all either.
We want our users to change their password through our Password Self Service web page which changes their password in Novell and Active directory.
We have a user login script calls a program that will display a screen on the desktop when their password is going to expire within 14 days and prompts if they want to change it Yes or No. If they select Yes I have it start their default web browser and launch our password self service page.
Is there a way that when the password experation date has been reached to deny the user from logging into the tree without enabling grace logins?
Thank You,