Change password after first login

Answered Question
Apr 5th, 2010

We setup user accounts on the local ASA 5510.  Is it possible to setup the user accounts so that the users can change the password after the first login?

Thanks.

Laura

I have this problem too.
0 votes
Correct Answer by Federico Coto F... about 6 years 8 months ago

Laura,

If the users reside on the local database on the ASA, there are some attributes that you can set, i.e

username TEST attributes

  password-storage         Enable/disable storage of the login password on the
                           client system

But what you want is to force the user to have to change its password, as far as I've seen you cannot set such parameter for local users on the ASA.

The way to accomplish this will be using an external authentication source (ACS, Radius server, TACACS+ server, etc.)

Federico.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Federico Coto F... Mon, 04/05/2010 - 09:29

Hi,

You're talking about users that can manage the ASA, users that just pass Firewall connections through the ASA, remote VPN users, ect?

Federico.

laurabolda Mon, 04/05/2010 - 09:55

Thanks for your prompt response, Federico.  I am talking about users who manage ASA and remote VPN users.  They are using IPSEC VPN client to login to VPN.  Please let me know if you need additional information.  Thanks.

Laura

Correct Answer
Federico Coto F... Mon, 04/05/2010 - 10:02

Laura,

If the users reside on the local database on the ASA, there are some attributes that you can set, i.e

username TEST attributes

  password-storage         Enable/disable storage of the login password on the
                           client system

But what you want is to force the user to have to change its password, as far as I've seen you cannot set such parameter for local users on the ASA.

The way to accomplish this will be using an external authentication source (ACS, Radius server, TACACS+ server, etc.)

Federico.

Actions

This Discussion