Reset Expired Password Over Wireless
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎12-17-2015 01:10 AM
We are using the NAC as our Radius server. When a user lets their password expire, they are not able to change it over the wireless connection. They have to go to a wired connection and then they are able to change it.
Are others seeing this issue? How are you getting around this issue?
Thank you.
Are others seeing this issue? How are you getting around this issue?
Thank you.
10 REPLIES 10
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎12-17-2015 02:11 PM
Reference: https://gallery.technet.microsoft.com/Password-Expiry-Email-177c3e27
Doug Hyde
Director, Technical Support / Extreme Networks
Director, Technical Support / Extreme Networks
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎12-17-2015 02:11 PM
Since you have flexibility with the solution, you can advertise it in the area around the users that need to change it then turn it off. This is until you can send out email reminders that they password is going to expire (before the expiration date)
Doug Hyde
Director, Technical Support / Extreme Networks
Director, Technical Support / Extreme Networks
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎12-17-2015 02:11 PM
Perfect...thank you.
I will give it a shot!
I will give it a shot!
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎12-17-2015 02:11 PM
yes, as long as they can connect and contact the DC to change the password.
Doug Hyde
Director, Technical Support / Extreme Networks
Director, Technical Support / Extreme Networks
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎12-17-2015 01:33 PM
A user will not be able to change their password on a 802.1X wireless connection because the password is expired and cannot establish the correct encryption/decryption keys. There is no way to establish a wireless session with 802.1X.
So unfortunately your only way to solve this is to do this where the user can gain access to the network. This can be a separate SSID for maintenence/repairs, or wired link, or you can set up some external system so they can reset their password via phone, but you will be unable to do this over a single SSID protected by 802.1X. You may want to send out a reminder email before their password expires and remind them that they need to change it before they cannot connect via wireless again.
So unfortunately your only way to solve this is to do this where the user can gain access to the network. This can be a separate SSID for maintenence/repairs, or wired link, or you can set up some external system so they can reset their password via phone, but you will be unable to do this over a single SSID protected by 802.1X. You may want to send out a reminder email before their password expires and remind them that they need to change it before they cannot connect via wireless again.
