Has anybody come up with a way to allow users to change their AD Password via script or otherwise in Self Service?
We have NoMADLoginAD configured now but because our AD isn't publicly accessible and we don't want to hand out VPN creds to every member of Staff, is there a way that you might be handling this that could help?
I would look to your Directory Services team to provide a secure tool for this if users need to do it off-net and have no VPN capability. It's not something you can proxy with the JSS.
It's odd that a user would be off-network and need this functionality, yet not be considered worthy of VPN access.