Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1157
Views
0
Helpful
1
Replies

ACS 5.6 - Change Password On Next Login

jason crockett
Level 1
Level 1

‎06-30-2017 01:15 PM - edited ‎03-11-2019 12:49 AM

I have a question regarding the user stores in Cisco ACS 5.6. We currently use the ACS User Identity Store to create users which use radius authentication to login to our VPN via the AnyConnect client. We use a Cisco ASA for the VPN server. I would like to force a certain group of ACS users to change their password the next time they login to the VPN. In their ACS account there is a "Change Password On Next Login" box that I have checked on a particular user to test this option. I logged into the VPN and was not prompted to change any password. I logged off the VPN and back and still did not get prompted to change the password. Am I missing something with this feature?

Labels:
0 Helpful
1 Reply 1

Dinesh Moudgil
Cisco Employee
Cisco Employee

‎07-02-2017 09:38 PM

Hi Jason,

In case you are using ASA for terminating VPN, make sure the password-management is configured on the ASA for the specific tunnel-group.This document should help you in understanding password change feature and the configuration that is needed on the ASA .

https://supportforums.cisco.com/document/11934926/password-management-ldap-vs-radius-vpn-users#ASA_does_not_support_password_management_under_the_following_conditions

Here is another link for your reference:-
https://supportforums.cisco.com/discussion/10586411/vpn-prompt-user-change-ssl-client-password

Regards
Dinesh Moudgil

P.S. Please rate helpful posts.

Cisco Network Security Channel - https://www.youtube.com/c/CiscoNetSec/
0 Helpful
Customers Also Viewed These Support Documents