Hi everyone,
I can't change the password from FortiPAM.
In the "Windows Domain Account" or "Windows Domain Account (Samba)" template,
instead of the "target" field, only the "Domain-Controller" field appears.
The problem is that if I enter the domain controller's IP address in the field, I can no longer access my destination domain server.
So, in the domain controller field, I'm forced to enter the server's IP address because I no longer have the host field.
So, I can access the final server, but I can't change the password.
Regards
Luca
Hello,
Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible.
Thanks,
Hi Lukino,
Can you please review the following KBs to cross-check your configuration?
https://community.fortinet.com/t5/FortiPAM/Technical-Tip-Password-change-for-Windows-Domain-Users-th...
https://docs.fortinet.com/document/fortipam/1.7.0/administration-guide/724480/change-password
With support, we managed to change the password for the Windows domain account and we were able to connect to the computer joined to the Windows domain, but not directly from the target Windows machine, but through the Windows domain controller's secret.
Although this isn't optimal since it means enabling the user with a secret that may not be necessary and changing the internal IP, there doesn't seem to be an alternative.
User | Count |
---|---|
2677 | |
1412 | |
810 | |
703 | |
455 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.