Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1522
Views
0
Helpful
1
Replies

AnyConnect Malformed Password error returned by AAA on password reset

dbgreekas
Level 1
Level 1

‎02-02-2011 12:38 PM - edited ‎02-21-2020 05:08 PM

I am using SLDAP with Windows 2008 servers... Normal authentication works fine but password reset prompts from any connect fail with a client side error that the password does not match the minimum complexity and on the ASA I am getting AAA user authentication Rejected : reason = Password malformed : server = xx.xx.xx.xxx : user = xxxxxx .

I have had this kind of error happen before but then it was related to not using SLDAP, now I am not sure why it isn't working as the docs say it should just work with Microsoft SLDAP servers.

Labels:
0 Helpful
1 Reply 1

Herbert Baerten
Cisco Employee
Cisco Employee

‎02-03-2011 03:08 AM

Things to check:

- make sure the ASA has a 3DES license

- make sure the binding user (i.e the username you have configured on the ASA with the ldap-login-dn command) has sufficient privileges, I believe "account operator" should be enough but to be sure test it with full admin rights.

- get "debug ldap 255" if you still have a problem

hth

Herbert

0 Helpful
Customers Also Viewed These Support Documents