Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Anand_Narayana
Contributor

Unable to change the password for ssl vpn users

hi, I have configured LDAP ssl and imorted the CA certificate. users are able to authenticate using the LDAP ssl but when their password expires they get Error: Permission denied. Any ideas how to solve the issue? below is the configuration that i have set in FG-310B edit " NETWORK-SUPPORT_msft.ing" set server " 172.16.0.1" set cnid " sAMAccountName" set dn " OU=Technology,OU=Test ,DC=msft,DC=ing" set port 636 set type regular set username " CN=Bind User,OU=Automation,DC=msft,DC=ing" set password **** set secure ldaps set ca-cert " CA_Cert_1" set password-expiry-warning enable set password-renewal enable next

Anand

Anand
2 REPLIES 2
tomokt
New Contributor

I have exact the same issue and configuration. 

FortiOS version: 5.2.2

LDAP: Windows Server 2012 R2

 

Please,help.

Anand_Narayana

tomokt wrote:

I have exact the same issue and configuration. 

FortiOS version: 5.2.2

LDAP: Windows Server 2012 R2

 

Please,help.

Hi,

   The problem has been resolved. It is the user that is configured on the LDAP setting need to have the permission to not only to read the user DB but to have permission to change the password of all the users as well something like Aministration.

Anand

Anand
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors