Microsoft password reset util (CUSRMGR.EXE) Any alternatives? Revisited

[Gunfighter]

Sorry for the confusion. At present the only way that I know of to change the local password on any account in a Windows Server is with the CUSRMGR.EXE util by Microsoft. The issue is for security reasons. as all the passwords in my Domain must be changed every 30 days. This is not a problem on Domain wide accounts, but it is on local accounts. It requires one of my Techs to go to each server and manually change the password. Microsoft wrote the CUSMGR.EXE util for this purpose for NT4.0. it does work on 2000 and 2003. But I was looking to write something a little more user friendly to accomplish the same task. It would not do me any good to write this application using a vulnerability in windows. As Microsoft would just patch it. I need a Microsoft approved way to do this in windows that authenticate the admin before allowing him to change it. The question is does anyone know of a Microsoft API or something in Active Directory that may accomplish this?

 

[SonicBoomAu]

ADSI

Have you thought of writing a script (VBS) using the ADSI (LDAP).
You have to have credentials to on the server outwise it throws up an error.

Ifyou are after a book example (ISBN:1578702194) or you can download some examples from www.newriders.com/adsi

Hope this helps