Hi,
We have a WiFi contoller based solution, the users don't have layer 2 security only layer 3 web authentication, this authentication make a query to a Radius ACS and the radius ACS is integrated with a Active Directory, the users database are in the AD, the solution work fine but when the user have the password expired the web authentication only response login error and the user don't have chance to change the password in the AD.
Exist some workaround or an definitive solution for this problem?