Hi everyone, FG VM in 7.4.1AD 2022 STD I Tried to configure this feature
:https://docs.fortinet.com/document/fortigate/7.4.1/administration-guide/631824/configuring-least-privileges-for-ldap-admin-account-authentication-in-active-directory
I followed...
@Sheikh On the DC, in the security event viewer, just see an error
mentionning "The specified account's password has expired.". After this
log, no other errors. I can see a "Credential validation" log or a
"Special Logon" log for the service account....
@Sheikh "You might also need to check that the service account has
correct privileges/permissions on the OU and the user account object as
well." :According to the privilege/permissions listed in this doc
https://docs.fortinet.com/document/fortigate/...
Hello @Sheikh, "Have you checked the domain Group policy settings, I
have seen sometimes if the GPO is configured with following settings
enabled, users cannot change password in the same day."Yes i also
thought about this point. This is a lab, so th...
Hello Ozkanaltas, "If I understand correctly.You want change user
password via ssl-vpn but you don't want to give admin rights to service
account." : Yes, that's it According to your quote, "The LDAP user must
either be an administrator, or have the ...
