Hot!Force change password SSL VPN users

Author
aveloz
New Member
  • Total Posts : 4
  • Scores: 2
  • Reward points: 0
  • Joined: 2015/08/07 07:57:14
  • Status: offline
2016/07/24 07:53:49 (permalink)
0

Force change password SSL VPN users

Hello,
 
Theres any way to force SSL VPN users to change their password?
 
I found this cookbook: http://cookbook.fortinet.com/ssl-vpn-users-passwords-expire-54/ but its to force change the password every x days...I want to force the change on initial login...
 
Thanks
#1

4 Replies Related Threads

    MikePruett
    Platinum Member
    • Total Posts : 674
    • Scores: 13
    • Reward points: 0
    • Joined: 2014/01/08 19:39:40
    • Location: Montgomery, Al
    • Status: offline
    Re: Force change password SSL VPN users 2016/07/24 18:33:54 (permalink)
    0
    Have you ever considered throwing a FortiAuthenticator in line? You can get creative with the RADIUS server function etc when you do this.

    Mike Pruett
    Fortinet GURU
    #2
    Jeff_FTNT
    Gold Member
    • Total Posts : 215
    • Scores: 15
    • Reward points: 0
    • Joined: 2005/06/14 16:27:00
    • Status: offline
    Re: Force change password SSL VPN users 2016/07/26 10:40:27 (permalink)
    0
    Use Windows AD as LDAP server , it also support.
    ## it need go over LDAPS for Windows AD
    Config user ldap/edit xxx
    set secure ldaps
    set password-renewal enable
    end
    #3
    zeki893
    Bronze Member
    • Total Posts : 31
    • Scores: 0
    • Reward points: 0
    • Joined: 2013/04/03 03:12:59
    • Status: offline
    Re: Force change password SSL VPN users 2017/11/01 17:36:37 (permalink)
    0
    Thanks confirmed this worked for me.
    See screenshot :) 

    #4
    deny_all
    New Member
    • Total Posts : 1
    • Scores: 0
    • Reward points: 0
    • Joined: 2017/12/07 06:15:38
    • Status: offline
    Re: Force change password SSL VPN users 2017/12/07 06:17:19 (permalink)
    0
    Jeff_FTNT
    Use Windows AD as LDAP server , it also support.
    ## it need go over LDAPS for Windows AD
    Config user ldap/edit xxx
    set secure ldaps
    set password-renewal enable
    end


    Does LDAPS require installing Certificate Services on the domain controller and importing the certificate into the FortiGate? We have other devices using LDAPS and certificates were not required.
    #5
    Jump to:
    © 2017 APG vNext Commercial Version 5.5