Force change Password on first loggin

[am7555]

hey guys, I have been asked to create something to force the user to change passsword on fist login using Classic ASP. I was thinking that perhaps the best way to go about it was to create a numeric field on the database, let's say set to 1 as default. when login first login occurs I check if the user's field is set to 1 if so, then redirect user to change password and if not 1 then go to whatever page it should go.

Is this ok. Or is there a better way to do it? has anyone done that...ideas????

Thanks,

Javier
PS. I'm using Calssic ASP and MS Access

 

[traingamer]

That sounds reasonable. You could also have a 'password last changed' date field, and if it's null, force a change.

Or any number of other perfectly reasonable ways.



Greg
"Personally, I am always ready to learn, although I do not always like being taught." - Winston Churchill

 

[am7555]

Thanks for the feedback traingamer. I got too busy to comeback soon enough.