Does anyone know of a strategy to capture the user password on FM server?

..before you jump on this topic for being a bad idea....

I am trying to sort out a way to keep the user's Windows password sync'd with their FM password.

The environment is that they access FM via webdirect and then access iis via browser only.

My thought is that if I force a password change on FM... then I can sync that on iis... because, with browser only access... I do not see any other way.

 

No need for a "sync" here.  You can use FileMaker's External Authentication to allow users to employ their Windows password to access the hosted files.  What is the source of the Windows password?  Active Directory or Local Security Groups?

Steven H. Blackwell, Platinum Member Emeritus

At the moment... local security groups.

What would be your approach on changing passwords in that environment?

So... on initial account; change password on 1st use; and then

change password at some interval.

Edited February 28, 20232 yr by ccbtx1

Modern thoughts on mandaded credential changes prove to be less secure as fequent changes could force users to put credentials on sticky notes because they can't retain passwords in their head or they don't use a password magnager.