Changing an AD Password via the Web Transfer Client

Active Directory (AD) and LDAP Site users can change their AD password through the Web Transfer Client (WTC). In v6.1 and later, if changing the password is disabled by EFT Server, the Change Password button is not available.

When a user attempts to change the account password, the following errors are possible. You can customize the error messages by creating text files with the following names and saving them in the EFT Server installation directory \web\public\EFTClient subdirectory (e.g., C:\Program Files\GlobalSCAPE\EFT Server Enterprise\web\public\EFTClient):

If the text files identified above do not exist when an error occurs, the default text provided within EFT Server is presented to the user.

The location of these files can be modified by running the PasswordChg_MsgFileLocation.reg script, which is located in the EFT Server installation directory Client subdirectory. You must first edit the PasswordChg_MsgFileLocation.reg script to specify the new location.

Turning Off the Change Password Feature for AD/LDAP User Accounts

The WTC NTAD/LDAP change password capability can be turned on/off through the PasswordChg_NTADLDAP registry key. This allows security conscious administrators to turn off this feature if necessary. By default, the password change ability is "off."

Two registry scripts are provided to enable/disable the password change feature:

These registry scripts are also located in the EFT Server installation directory \web\public\EFTClient subdirectory.

You may have to edit the .reg file before using it, depending on whether you have a 32-bit or 64-bit OS. For example:

32-bit:

[HKEY_LOCAL_MACHINE\SOFTWARE\GlobalSCAPE Inc.\EFT Server 4.0\EFTClient]

"PasswordChg_NTADLDAP"="on"

64-bit:

[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\GlobalSCAPE Inc.\EFT Server 4.0\EFTClient]

"PasswordChg_NTADLDAP"="on"