Hello,
Theres any way to force SSL VPN users to change their password?
I found this cookbook: http://cookbook.fortinet.com/ssl-vpn-users-passwords-expire-54/ but its to force change the password every x days...I want to force the change on initial login...
Thanks
Have you ever considered throwing a FortiAuthenticator in line? You can get creative with the RADIUS server function etc when you do this.
Mike Pruett
Use Windows AD as LDAP server , it also support.
## it need go over LDAPS for Windows AD
Config user ldap/edit xxx
set secure ldaps
set password-renewal enable
end
Thanks confirmed this worked for me.
See screenshot :)
Jeff_FTNT wrote:Does LDAPS require installing Certificate Services on the domain controller and importing the certificate into the FortiGate? We have other devices using LDAPS and certificates were not required.Use Windows AD as LDAP server , it also support.
## it need go over LDAPS for Windows AD
Config user ldap/edit xxx
set secure ldaps
set password-renewal enable
end
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1740 | |
1108 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.