We have determined that we can do this by flowing to the unicodePwd attribute in a suitably configured
Active Directory Domain Services Management Agent.
We know too that we can set an initial password using a Metaverse Extension.
Our problem: we have a mature AD and do not wish to change any passwords on existing accounts when we initialise
our system.
We will import our AD structure and parallel information which is stored in a SQL database.
The latter will include an 'initial password' which will not match the usernames actual password in all likelyhood.
Synchronize the two sources and with suitable projection rules join the related objects, with the objective of flowing
any changes from the SQL database to the AD Management Agent. Currently though, when we 'turn on' a flow of the
password every password is reset. Can we avoid this?
Any advice will be gratefully received. Thank you.