Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
AEK
Honored Contributor

FortiNAC RADIUS doesn't ask to reset expired password

Hello FortiNAC community

 

We have FNAC 9.4.3 controlling WiFi access with FNAC local RADIUS + Winbind.

All works fine except when a user's password has expired.

With our old MS AD RADIUS, when user with expired password wants to connect to WiFi, it asks him to reset his password. However with FNAC RADIUS it doesn't, so the user is unable to connect and unable to reset his password.

 

Any useful idea would be appreciated.

 

AEK
AEK
1 Solution
ebilcari
Staff
Staff

FNAC uses LDAP to check user credentials and authenticate them, it doesn't write to LDAP. So it can't support the passwords change/reset procedure. What it can do is reset the password for local users.
It's considered to be included in the 7.4 firmware.

- Emirjon
If you have found a solution, please like and accept it to make it easily accessible for others.

View solution in original post

2 REPLIES 2
ebilcari
Staff
Staff

FNAC uses LDAP to check user credentials and authenticate them, it doesn't write to LDAP. So it can't support the passwords change/reset procedure. What it can do is reset the password for local users.
It's considered to be included in the 7.4 firmware.

- Emirjon
If you have found a solution, please like and accept it to make it easily accessible for others.
AEK
Honored Contributor

Thanks Emirjon

Yes it is not supported in local RADIUS.

However we just tested it with RADIUS proxy and it works just fine.

AEK
AEK
Labels
Top Kudoed Authors