Win Password Change ACS 5.4

macfrist38 · ‎09-29-2013

Dear all,

Can somebody tell me all attribute that can make users change their password after expiration when they want to connect on the network ? because they cannot. In the ACS log i can see that user have to change their password.

context : Dot1x authentication is activated (no one can access on the network if he cannot authenticate)

aqjaved · ‎09-30-2013

Please check the below links which may be helpful for you:

Link-1

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.4/migration/guide/Migration_Configure.html#wp1053326

Link-2

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.4/user/guide/eap_pap_phase.html

Abha Jha · ‎09-30-2013

The user update operation with the change password option enabled is not working properly when you import or export the internal users.

When you import or export internal users, only one user out of the group of internal users has the change password option enabled.

This problem occurs when you do the following:

a. Create a Network Device Group (NDG), for example, Migrated_NDG, under Network Device Groups.

b. Import the users (for instance, from internal_user_import_template-add).

c. Update the same users in ACS with the change password option enabled or disabled.

The result is that the change password option is enabled for a single user alone. For all the other users, it is disabled.

Workaround:

Manually enable the change password option.

Please check if woraround works for you..???