Skip to main content
mzia259
mzia259
New Member
February 12, 2017
Solved

Change password failed

  • February 12, 2017
  • 1 reply
  • 18263 views

Hello folks,

 

The setup is as follows:

-The users use FortiClient 5.4 to connect to the FG (running 5.4.4) through SSL VPN.

-The users is authenticated by AD (Windows 2008 R2) using LDAPS.

-The users can successfully authenticated, and change their passwords (if the passwords are expired, or the user account has to change the password at next login).

 

The problem is, if the user is configured to use two-factor authentication (FortiToken), the user can login but cann't change his password and get "Permission denied (-455)" error, as follows:

-The user is asked to enter his username/password.

-Then is asked to enter the new password.

-Then get the above error message.

-In the AD, nothing change.

 

Could anyone help me in resolving this issue?

 

BR,

M Zaki

    Best answer by rojekj

    Yup, I can confirm that 5.6.0 is free of this bug. Password change works for both tokened and untokened users. :)

    1 reply

    rojekj
    rojekj
    New Member
    March 24, 2017

    Same problem here. For me it is a bug, there simply are no more settings that I can try to resolve this issue.

    Opened a support ticket and waiting for Fortinet answer. Will share it here.

    rojekj
    rojekj
    New Member
    March 28, 2017

    Fortinet confirmed that there is a bug in 5.4.x branch, and the problem should be resolved in 5.4.5.

    Other option is to downgrade to 5.2.10, as 5.2.x branch is not affected.

    MikePruett
    MikePruett
    New Member
    March 28, 2017

    Good to know Rojekj. Thanks for updating us.

    Terms & ConditionsAccessibility statement