Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
533
Views
0
Helpful
1
Replies

AnyConnect password-management based on AD group

peter.matuska1
Level 1
Level 1

‎10-08-2020 01:38 AM

Hi,

I have configured access to VPN based on assignment to specific AD group. If user is in that group, VPN works, if the user is not there - VPN doesn't work.

When I try to login and my AD password is about to expire, I am able to change it whether I am member of the desired VPN AD group or not.

The goal is to block all users who are not members of the specific AD group from changing their AD passwords using AnyConnect VPN. Is it possible? 

 

thank you

Labels:
0 Helpful
1 Reply 1

balaji.bandi
Hall of Fame
Hall of Fame

‎10-08-2020 03:54 AM

I believe this is more down to AD Group policy.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Customers Also Viewed These Support Documents