Greetings, we have an VPN structure that is hosted in ASA 5510, the users are stored in Microsoft Server's Active Directory and the policies enforced by GPO. We have configured the GPO for VPN users that they are required to change their password every 90 days. Using password-management configuration in ASA allows management of AD user password prompt, but our users that have password expired/expiring due to GPO do not have prompt and unable to login. Besides shifting to Active Directory for control of password age, is there any other solution?
.-asd-.
.-asd-.