09-19-2018 06:43 AM
Hi,
Does ISE support expired password change feature via AnyConnect VPN connection for internal user (not AD/LDAP) ?
Best Regards,
Kaori
Solved! Go to Solution.
09-19-2018 09:34 AM
09-19-2018 09:34 AM
09-25-2018 09:24 PM - edited 09-27-2018 06:19 PM
Thank you Jason and sorry for that. I'm checking this configuration in my lab.
Update:
It works well with "change password on next login", but not with password expiry because of account disable.
It seems ACS-RESERVED-Never-Expired attribute is not effective. Isn't this expected behavior?
02-21-2019 12:12 AM
I've same problem.
Seem like ASA+ISE with internal user not able to change password when password expired. but working fine with next log on.
Do you have any idea?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide