02-20-2018 08:04 PM - edited 02-21-2020 10:46 AM
I've disabled all options under Administration > Identity Management > Settings > User Authentication Settings > Password Lifetime, but I'm still receiving a message saying my password will expire.
Can't see anywhere else this could be coming from, so am I missing something? It's important that passwords don't expire since we use this for device config backup and monitoring.
04-18-2018 01:59 PM
We had the same issue on ISE 2.2 P4, the user account did not have the option checked. But after a lot of hit and trial I found out that once the option is checked (which is by default), even though its unchecked the value stays in the database. By default the value is "Disable user account after 60 days...". So even if you uncheck the value stays in the database, i set the value to 365 days and was able to fix the issue. Once i unchecked the option after changing it to 365 it never threw the warning that my password was expiring. It may show the warning once the 365 day timer lapses.
Is it an expected behavior : No
Did it fix my issue: Yes
I didn't bother opening a TAC case, but it does look like a bug to me. Especially after seeing something relevant https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvh74550/?rfs=iqvred
04-18-2018 03:25 PM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide