set_change_pwd_denied command to modify the
ADS_UF_PASSWD_CANT_CHANGE flag in the
UserAccountControl attribute. This flag controls whether an Active Directory user can change his or her domain password. You must specify the distinguished name of a valid Active Directory user account that should not be allowed to change his or her password.
This command takes no options.
This command takes the following argument:
Required. Specifies the distinguished name of the Active Directory user who is not allowed to change his or her password.
This command returns nothing if it runs successfully.
This example selects the “User cannot change password” account property for the Active Directory user
Related Tcl library commands
The following commands perform actions related to this command: