Forum Discussion

Altostratus

Jul 27, 2015

Can APM Active Directory expired password reset functionality be turned off?

Does anyone know how to disable the functionality of the APM login page where it prompts a user to change their password if their Active Directory password is expired? I'd like to simply reject users...

BIG-IP Access Policy Manager (APM)

Nimbostratus

Dec 09, 2015

Have you found an answer to this? I have a related need-

I have an apm policy where we are 'on-boarding' new users as well as handling existing users. new users have expired passwords. existing users we don't care and don't want them to authenticate. (the authenticate is simply to get their AD password changed for the new users).

we have the user identifier (username).

we want to have only those users that we are 'on-boarding' -- who have expired passwords to go thorugh the AD Auth where it will see the password is expired and ask them to reset it.

How can we 'pre-check' that the user is expired or not? AD Query with a branch? or LDAP Query to AD with a branch?

What would the test be to determine that this user has an expired password?

Thanks in advance...

Forum Discussion

Can APM Active Directory expired password reset functionality be turned off?

Recent Discussions

F5 ASM logging profile to specify source IP

Portal Access to HTTPS resources slow

Cannot login to Avaya wanx using f5 apm network access

Hi All, We have viprion 4300 with 4450 blades with 6 blades all blades having same configuration

Can iRule be used to perform exception of IPI category based on Geolocation

Related Content

Automate scp transfers using password

Password Safety & Security: Passwords vs. Passphrases

F5 Cloud-Native Functions For Secure DNS

F5 Cloud-Native Functions For Secure Ingress

F5 Cloud-Native Functions For Modern Demands - Part 1