Active Directory passing password expiration to SSL clients

Unanswered Question
Apr 6th, 2007

Hello, we are going to start rolling out SSL VPN to remote mobile users. My problem is we have an ASA that authorizes AD users via an ACS appliance. How do I get the mobile user to see an AD popup saying "You have 14 days until your password expires" also any ideas on how to let that user change his AD password via SSL? Are there any 3rd party products that would do this?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Danilo Dy Sat, 04/07/2007 - 01:56


I have worked with ASA SSL VPN with MS AD/IAS.

I don't think your first question is feasible.

However, if you want the user to be able to change their AD password through SSL. Here is how to do it.

- allow users access to AD through HTTPS after they successfully login through SSL VPN

- check Microsoft Knowledgebase for IISADMPWD


This Discussion