Change password after first login

Answered Question
Apr 5th, 2010
User Badges:

We setup user accounts on the local ASA 5510.  Is it possible to setup the user accounts so that the users can change the password after the first login?


Thanks.


Laura

Correct Answer by Federico Coto F... about 7 years 2 months ago

Laura,


If the users reside on the local database on the ASA, there are some attributes that you can set, i.e


username TEST attributes

  password-storage         Enable/disable storage of the login password on the
                           client system


But what you want is to force the user to have to change its password, as far as I've seen you cannot set such parameter for local users on the ASA.

The way to accomplish this will be using an external authentication source (ACS, Radius server, TACACS+ server, etc.)


Federico.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Federico Coto F... Mon, 04/05/2010 - 09:29
User Badges:
  • Green, 3000 points or more

Hi,


You're talking about users that can manage the ASA, users that just pass Firewall connections through the ASA, remote VPN users, ect?


Federico.

laurabolda Mon, 04/05/2010 - 09:55
User Badges:

Thanks for your prompt response, Federico.  I am talking about users who manage ASA and remote VPN users.  They are using IPSEC VPN client to login to VPN.  Please let me know if you need additional information.  Thanks.


Laura

Correct Answer
Federico Coto F... Mon, 04/05/2010 - 10:02
User Badges:
  • Green, 3000 points or more

Laura,


If the users reside on the local database on the ASA, there are some attributes that you can set, i.e


username TEST attributes

  password-storage         Enable/disable storage of the login password on the
                           client system


But what you want is to force the user to have to change its password, as far as I've seen you cannot set such parameter for local users on the ASA.

The way to accomplish this will be using an external authentication source (ACS, Radius server, TACACS+ server, etc.)


Federico.

Actions

This Discussion