So, in other words, it can't be done? Right?
Our help desk will reset user passwords when they forget their passwords...and force the user to change their temp password by checking the box "user must change password".
I guess this will have to change?
Would you suggest I authenticate my users otherwise?