Hi Grey,
Yes, I was thinking about that, but here is a problem:
These are already existing users. They have their AD passwords set, that they can get from their superior, and they have ITIM account passwords already created, that no one knows.
They use their AD password to log in to ISIM, but if I set their ISIM accounts to require password change, it will request for the old password, that is different than AD password.
Also,
there is a parameter on ITIM service form, "
WebSphere account repository", that should, according to documentation (at least for software installations) be cleared out (or you can change it to AD, it does not make any difference) when you set authentication to an external directory.
So, if you set it like documented (clear it out), you can't set "change password on next logon" on ISIM account any more.
As you said "couple of ways to do it", what else you were thinking of?
Thanks,
Mita