Scenario: Users never login to a XP thinclient but access sharepoint portal and links which require password to be entered. Sharepoint authenticates against AD, although integrated login is not used. The workstations are domain members. Questions: 1. How to pass in the credentials of the requester for password registration. mspwdregisteration.exe takes the windows credentials of the logged in user and pass it on to the FIM Portal. In this scenario, the machine does not require login, hence password registration will need to be launched on demand with the credentials of the requesting user (and not of the account used to log into the machine). I suspect that the portal can be used to register the password if on the registering machine the portal is not configured as an Intranet Site to force entry of credentials. 2. The password reset button on the XP login window cannot be used as the workstation is already signed in. Password reset has to be done over the https://fimportal/passwordportal link. Would this scenario work as it appears to accept a UserID for pwd Reset? In my labs the URL based password change does not work and returns the error shown at http://fim2010.blogspot.com/2010/04/error-with-password-portal-password.html Thanks, AB

for 1, u have to find someway to impersonate the user to run mspwdregistration.exe. a regular runas should do for 2, it's definitely supported scenario. You need to input "domain\username" in that box and click Reset password For the error you are seeing, there are a few things that u can check 1. make sure the client is installed 2. during installation of the SSPR client, make sure u put "fimdev01" in the sitelock field. note that it's case sensitive. if i remember right, it's under HKLM\Software\Microsoft\Forefront Identity Management\2010\Extensions\SiteLock (check the respective 32bit registry hive as well)

Thanks nTony, Indeed the value for HKLM\Software\Microsoft\Forefront Identity Management\2010\Extensions\SiteLock contained the FQDN of the portal server. After shortening it, the password reset worked! runas is a brilliant idea for pwd registration! AB