Our users connect to our PIX 515e using the Cisco VPN client. I recently enabled RADIUS on a Windows domain controller to provide user authentication. However users now have a problem if their Windows password expires.
When logging into a Windows machine you will be presented with a warning to change your password when it has expired. But through the VPN this is treated simply as an expired password, and you can't login.
I know there is a way to do this. I saw it at a friend's company.