Reset Search
 

 

Article

802.1x expired AD password reset problem

« Go Back

Information

 
Title802.1x expired AD password reset problem
Symptoms
  • When the user is configured in the AD to change his password during the next login
  • i.e. "User must change password at next logon" the authentication failed.
Environment
  • EXOS switching environment
  • 802.1x PEAP (EAP-MSCHAPv2) authentication
  • NAC is using LDAP connection to AD and is joined to the domain for password verification
  • Windows 802.1x client
  • The user is given a password in AD with a flag "User must change password at next logon"
  • NAC version 6.3.0.182
Cause
  • Unknown so far we believe this to be related to the openssl library of the NAC
Resolution
  • Upgrade to  NAC version  7.0.3.11 or above
Additional notes

Feedback

 

Was this article helpful?


   

Feedback

Please tell us how we can make this article more useful.

Characters Remaining: 255