Theres any way to force SSL VPN users to change their password?
I found this cookbook: http://cookbook.fortinet.com/ssl-vpn-users-passwords-expire-54/ but its to force change the password every x days...I want to force the change on initial login...
Have you ever considered throwing a FortiAuthenticator in line? You can get creative with the RADIUS server function etc when you do this.
Fortinet GURU | Fortinet Training Videos
Use Windows AD as LDAP server , it also support.
## it need go over LDAPS for Windows AD
Config user ldap/edit xxx
set secure ldaps
set password-renewal enable
Thanks confirmed this worked for me.
See screenshot :)
Jeff_FTNT wrote:Use Windows AD as LDAP server , it also support.## it need go over LDAPS for Windows ADConfig user ldap/edit xxxset secure ldapsset password-renewal enableend
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2023 Fortinet, Inc. All Rights Reserved.