Use ASP's security validation to make online changes to the Windows 2000 Manager password

window| Security | Online IIS security Verification mechanism is done very well, we can use ASP security authentication to the Windows 2000 Manager password online modification.
When someone logs on to the site, use the Login_user in the ServerVariables collection to capture the login account, if you must turn off the option to allow anonymous logons in IIS, and then modify the password by ADSI in the changepwd.asp file.
Here's the program:

Changepwd.htm
<body>
<!--a client-side validation script related to the input form (that is, not allowing the new password to be null and two times the equality of password input) please number yourself-->
<form action= ' changepwd.asp ' method= ' post ' >
Type= ' hidden ' name= ' UserName ' value= ' <%=request.servervariables ("Login_user")%> ' > ' <input
<br> Enter old password: <input name= "Oldpwd" >
<br> Enter new password: <input name= "NEWPWD1" >
<br> Confirm New Password: <input name= "NEWPWD2" >
<input type=submit value= ' Change ' >
</form>
</body>


Changepwd.asp
<%
Oldpwd=request.form ("Oldpwd")
Newpwd=request.form ("NewPwd1")
Username=request.form ("UserName")
Set ouser=getobject ("winnt://computername/" & UserName)
Ouser.changepassword oldpwd,newpwd
Ouser.setinfo
Set ouser=nothing
Response.Write "Password modified successfully!" "
%>