| Description | This article describes that when local users receive a password expiry email from the self-service portal and select the provided URL, they encounter a '403 Forbidden' error. |
| Scope | FortiAuthenticator, FortiAuthenticator Cloud. |
| Solution |
Requirement:
Password Policy:
Note: When 'Maximum password age:" is set to 14 days and 'Send password renewal reminder on:' is also left as default (14,7,3,1) then FortiAuthenticator does not send the password expiry warning message on the same day of user creation, either admin should change the default settings to (13,7,3,1) if not user will get the email on 7th day.
Portals:
Portal Policy:
Creating a Local user:
User Group:
SMTP Server:
User gets a password expiration email:
Once the user gets a password expiry email, then the user tries to access the URL which is mentioned on Portal Policies, then the user gets below message.
To resolve this issue on FortiAuthenticator VM or Hardware, the admin should enable the captive portal on the respective interface, the user should be able to open the link and reset the password, after accepting the disclaimer that which admin selected while configuring the Portal. User will be prompted to authenticate. The user needs to authenticate using existing user credentials. Once successfully authenticated, select the Password to reset the password.
On FortiAuthenticator Cloud, the Captive portal can be enabled under System -> Administration -> Access Rights.
|
