>I plan on running this function in a COM component. What rights does the user it runs under need in order for it to work?
>
>Jake

Jake,
Unless you are running the COM component under MTS/COM+, it will use the security context of the user that instantiates the object. Under MTS/COM+, you can specify the account to use for authentication when the object is instantiated.

Password changing is usually limited to persons with administrative privileges and that specific person. If a regular user attempts to change someone elses password, they will get a security message. If the user is not allowed to change their password, another message will be displayed (don't know which one as I have never been in this kind of environment).