-
Products
-
SonicPlatform
SonicPlatform is the cybersecurity platform purpose-built for MSPs, making managing complex security environments among multiple tenants easy and streamlined.
Discover More
-
-
Solutions
-
Federal
Protect Federal Agencies and Networks with scalable, purpose-built cybersecurity solutions
Learn MoreFederalProtect Federal Agencies and Networks with scalable, purpose-built cybersecurity solutions
Learn More - Industries
- Use Cases
-
-
Partners
-
Partner Portal
Access to deal registration, MDF, sales and marketing tools, training and more
Learn MorePartner PortalAccess to deal registration, MDF, sales and marketing tools, training and more
Learn More - SonicWall Partners
- Partner Resources
-
-
Support
-
Support Portal
Find answers to your questions by searching across our knowledge base, community, technical documentation and video tutorials
Learn MoreSupport PortalFind answers to your questions by searching across our knowledge base, community, technical documentation and video tutorials
Learn More - Support
- Resources
- Capture Labs
-
- Company
- Contact Us
How to configure SMA 1000 for Active Directory user password changes?
03/26/2020 
13 People found this article helpful
478,508 Views
Description
It is a common practice to set initial user passwords and then require the user to set a new password when they initially log in.
The SMA can be configured to notify users when their password is expiring and allow users to change their passwords.
Under System Configuration > Authentication Servers > Edit (on an active Directory Server) > Advanced scroll down to Password Management:
"Allow user to change password when notified" should be enabled.
If "Allow user to change password when notified" is not enabled and the user is required to change the password on their initial login they will be prevented from logging in.
Cause
With "Allow user to change password when notified" disabled a user with a valid password that expires in the future, would initiate a password change themselves while logged in. Disabling this option might be used by administrators to identify users who do not change their passwords promptly when required. It prevents a user with an expired password to change their password.
A user required to change their password on next login are blocked from accessing the system with this setting disabled.
Resolution
"Allow user to change password when notified" should be enabled uunless the administrator intends to prevent users with expired passwords from setting a new password.
Related Articles
- How to Set Timeout for Inactive Tunnel Connections
- Commands for silent installation of NetExtender via CMD line
- Users on Netextender 10.3.0 version failing to connect with the following error message " Cannot get a response from the server "
Categories
- Secure Mobile Access > SMA 1000 Series > Authentication
- Secure Mobile Access > SMA 1000 Series > Configuration
- Secure Mobile Access > SMA 1000 Series > User Access
YES
NO