I'm trying to use IIS's Integrated Windows Authentication to take advantage of various user management and security features of Windows, namely password expiry and complexity checking.
But currently if your password expires, or the user flag "must change password at next logon" has been set, then authentication simply fails - i.e., IIS doesn't have a built-in mechanism for handling changing passwords.
So my question is, is it possible to write some sort of plugin on either the server or the browser side that handles this, that prompts for a new password, checking it against complexity rules, then changing it on the server (which presumably requires Admin privileges)? Better still, does anyone know of an existing product that does this? If not, what alternatives do I have?
Thanks,
Dylan