I'm not much of a web developer or anything so I'm sure this is a stupid question. I have a web app that uses PHP on the back-end, and the PHP executes powershell scripts to reset passwords through system calls.
In order for me to get this to work I had to set the Anonymous Authentication user to run as an account with permissions to reset AD passwords. My gut instinct tells me this is a security problem, but it works perfectly and i'd like to keep it that way if I can.