Allowing Active Directory Password Change Through SMB SSL-VPN Appliance
03/26/2020 26 People found this article helpful 448,569 Views
Description
Allowing Active Directory Password Change Through SMB SSL-VPN Appliance
Resolution
This article helps us in allowing active directory users to change their password on thier next logon.
- Login to the SRA administration GUI.
- Navigate to Portal | Domain and edit the domain in which you want the users to change their password.
- Enable the option Allow password changes (requires access to AD server port 464 UDP).
Configuration on the Active Directory
- Log into a domain controller with administrative access.
- Open "Active Directory Users and Computers" and create a group that you are going to allow password reset rights.
- Right click on any OU and a group that will contain the users who can change their password.
- Select "Delegate Control".
- It will take you to a wizard, hit on next and select the user group that should be having the privileges for password change.
- After selecting click on next and enable the option reset user password and force password change at next logon.
Result
Once the user tries to login to the NetExtender and if his password is expired, he will be asked to change his password.
Related Articles
Categories
Was This Article Helpful?
YESNO