Hi,
I have worked with ASA SSL VPN with MS AD/IAS.
I don't think your first question is feasible.
However, if you want the user to be able to change their AD password through SSL. Here is how to do it.
- allow users access to AD through HTTPS after they successfully login through SSL VPN
- check Microsoft Knowledgebase for IISADMPWD