SQL Auth'd users changing passwords?

[SQLBill]

For those of you who use SQL Server authenication for your users:

What method do you use to allow your users to change their passwords?

My users have to come to my facility and change them (via Enterprise Manager). They don't have access to any of the client tools and only use Crystal Reports to access the database.

I am working on creating a Microsoft Access form that will allow them to change their password themselves. But I got curious how others might be handling this issue.

-SQLBill

 

[TheBugSlayer]

I normally take care of changing SQL Auth'd users. We mostly use Windows Authentication. Though if I were to give users ability to change their password it would have to be through an interface similar to your, with sp_password.

Interesting.

BTW, I pay my exam fee today. Taking 70-228 on 07/02. Fretting!!!

 

[Corran007]

Almost all of my regular users use windows auth. For ones that are not and actually need chaning (most of them are application specific ones) i take care of changing them.

If i had the need, i would create an interface, but mine would be an asp.net form since im a .net programmer as well.

 

[SQLBill]

Thanks for the inputs. Most of my users do use Windows Auth. but I have a few remote users that are not on a trusted domain - so they are stuck with SQL Authentication.

We are involved in computer security - so it's very poor practice for me to change their passwords for them. (The requirement for password security is very strong - over 8 characters and must have three of the following - Uppercase letters, lowercase letters, numbers, special characters).

The passwords on my database are currently 12 characters or more.

When I get my MS Access form working, I plan on posting it as a FAQ.

'Til then, I'm still accepting more input/suggestions.

-SQLBill