We have ASA 5550, Steel-Belted Radius and Windows 2003 Active Directory. I am trying to setup so that the users can change the password when the password expires. We have over 1000 users.
I setup "password-management password-expire-in-days 14" in ASA. At the VPN client, it prompted for the User Name, Password, and Domain. I typed in the password. Then, it prompted me for a screen for the new password and confirm new password. Then, it prompted back the screen for the user name, password and domain. I typed in the new password and got the error message "413 User authentication failed". How do you setup so that the users can change password before the password expires? Any help is greatly appreciated.