Hello folks,
The setup is as follows:
-The users use FortiClient 5.4 to connect to the FG (running 5.4.4) through SSL VPN.
-The users is authenticated by AD (Windows 2008 R2) using LDAPS.
-The users can successfully authenticated, and change their passwords (if the passwords are expired, or the user account has to change the password at next login).
The problem is, if the user is configured to use two-factor authentication (FortiToken), the user can login but cann't change his password and get "Permission denied (-455)" error, as follows:
-The user is asked to enter his username/password.
-Then is asked to enter the new password.
-Then get the above error message.
-In the AD, nothing change.
Could anyone help me in resolving this issue?
BR,
M Zaki
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Good to know Rojekj. Thanks for updating us.
Mike Pruett
Yup, I can confirm that 5.6.0 is free of this bug. Password change works for both tokened and untokened users. :)
Same problem here. For me it is a bug, there simply are no more settings that I can try to resolve this issue.
Opened a support ticket and waiting for Fortinet answer. Will share it here.
Fortinet confirmed that there is a bug in 5.4.x branch, and the problem should be resolved in 5.4.5.
Other option is to downgrade to 5.2.10, as 5.2.x branch is not affected.
Good to know Rojekj. Thanks for updating us.
Mike Pruett
rojekj wrote:Any confirmation yet? There is no 5.4.5 so I expect the fix will be in 5.6...?Fortinet confirmed that there is a bug in 5.4.x branch, and the problem should be resolved in 5.4.5.
Other option is to downgrade to 5.2.10, as 5.2.x branch is not affected.
Yup, I can confirm that 5.6.0 is free of this bug. Password change works for both tokened and untokened users. :)
Good to know on 5.6. I also was able to confirm that it is fixed in 5.4.5 which should be out any day now. How do you like 5.6? Any glaring issues w/ it?
No issues so far. Some annoying GUI bugs are fixed. Only CPU usage is higher by 5%. Overall I'm happy with it :)
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1692 | |
1087 | |
752 | |
446 | |
228 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.