I am having a hard time to get a "simple" password change working.
What i am trying to achieve:
Create Account in ACS with username and Password. Group Settings are "change Password on first login".
The first login with Telnet works and prompts for a password change. But who is willing to use Telnet these days?
Same test with SSH first login -> Access Denied.
The result is that ACS reports the user as "Expired".
Is this a Layer8 configuration Problem, a bug in ACS or IOS or is it simply not possible?
I am currently testing on WS-C4948 running 12.2(25)EWA11.
Thanks for reading
For TACACS+ with SSH password aging, one-time password change etc are supported by
CSCin91851. The fix is integrated in version 12.4(10.01)T.
Do rate helpful posts