Hello, I have a requirement where our application needs to allow users to authenticate to AD and Change their own Passwords. We have used the unicodePwd attribute and taken care of UTF-16LE quoted string while performing the operation. The operation throws INSUFF_ACCESS_RIGHTS exception when attempted. On modifying the user and giving Reset Password permission to SELF we are able to perform the Change Password operation. In this case, the operation doesnt seem to comply with Password Policies set. Like for example, the user can reuse his existing password even though the policy mandates that the last 24 passwords cannot be reused. Is there a way to get over this, am I missing something? Thanks, Saiesh Saiesh

Please stick to just one thread: http://social.technet.microsoft.com/Forums/en-US/winserverDS/thread/6df5eee6-47b2-47f9-9cec-bf509942e34b This posting is provided "AS IS" with no warranties or guarantees , and confers no rights. Microsoft Student Partner 2010 / 2011 Microsoft Certified Professional Microsoft Certified Systems Administrator: Security Microsoft Certified Systems Engineer: Security Microsoft Certified Technology Specialist: Windows Server 2008 Active Directory, Configuration Microsoft Certified Technology Specialist: Windows Server 2008 Network Infrastructure, Configuration Microsoft Certified Technology Specialist: Windows Server 2008 Applications Infrastructure, Configuration Microsoft Certified Technology Specialist: Windows 7, Configuring Microsoft Certified Technology Specialist: Designing and Providing Volume Licensing Solutions to Large Organizations Microsoft Certified IT Professional: Enterprise Administrator Microsoft Certified IT Professional: Server Administrator Microsoft Certified Trainer