Hi there,
On your windows 2000 CD you have a directory that has a 'resource kit',
when you install it you have the AD query tool or LDAP.exe.
You can use this tool alone with a search criteria to set the
changepassword flag of specific accounts. Lets say you want to set the
accounts for any user with the first name of TOM, you would user a query
like this as your serach criteria:
(&(objectClass=person)(givenName=Tom))
This is a compount query that only returns users (not groups, printers,
computers or anything else) and only the users with the First Name of TOM.
This can be very powerful. Now lets say you wanted to return all users who
had the FirstName of TOM but exclude any users who are in the city of
Cleaveland:
(&(objectClass=person)(givenName=Tom)(!l=Cleaveland))
You can make very powerful search criteria. I suggest in doing a search
until you get the hang of it and then cut and paste you query into the
attribute modification area so you dont accidentally whack the wrong people.
I am a programmer myself and love to code solutions, but this is geared
for admins and takes about 1 - 2 minutes instead of the hour trying to
generate a script file. Its good if this is the only time you want to do it
or if its a special query.
Lemme know if this helps.
-Timothy