I dont think you want a msgina.dll replacement. GINA is the process called by winlogon which performs the authentication and returns success or failure to winlogon. Replacing GINA is useful if you dont want to use AD/Windows authentication and want to auth on something else (RADIUS,OpenLDAP,Biometric scanner,etc). Since you still want to use your domain but just want to change the rules and message you want a custom passfilt.dll. Whenever a call to change a password is made, it gets passed through the passfilt.dll, Windows 2000/2003 ships with a default passfilt.dll, and thats the one you see when configuring password policies on the domain, but there is plenty of documentation on writing your own passfilt.dll on MSDN . If your company does not have someone familiar with W32 coding, there are companies that sell passfilt replacements like ANIXIS.


-Maestr0