Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
P-vs
Staff
Staff

Created on ‎01-16-2025 12:33 AM

Article Id 370609

Troubleshooting Tip: Unable to enable password expiry warning in LDAP

Description This article describes the error while enabling the password expiry warning in LDAP.
Scope FortiGate. 
Solution

This scenario is based on SSL VPN with LDAP user password expiry warning/renewal. To enable the password expiry warning/renew option:

 

config user ldap

    edit "ldaps-server"
        set password-expiry-warning enable
        set password-renewal enable
    next
end


The following error will be encountered in some scenarios.

 

Error.1.png

 

FGT-VM-Primary (V2-LDAP) # next
172.30.130.10 is already the secondary server
node_check_object fail! for server 172.30.130.10
Attribute 'server' value '172.30.130.10' checking fail -61
Command fail. Return code 1

 

Verify the configuration. In the above case, the primary IP and secondary IP are the same and it is not possible to enable password renewal.

 

Error..png

 

Once the secondary IP is corrected, will be able to enable the renewed password.
176
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.