Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Password Management


I am having this issue with the password management on the ASA.  Everything on the ASA is configured according to the Cisco Document.  Now the issue is that when I log in using the anyconnect client or using the webvpn, it does not prompt me that my password is to expire in x number of days.  I have tried it all the different number of days, but it still would not work.  When I did a debug to find out about the password management, I could see that it was getting the attributes from the LDAP server, except the password expiry details from it. 

now: Thu, 19 Jul 2012 17:05:47 GMT, lastset: Thu, 19 Jul 2012 17:05:33 GMT, delta=14, maxage=159663333 secs

[279] expire in: -1080764968 secs, 37201 days


This is somewhat of an issue as on the LDAP server, my user account has been set to have the password changed in 5 days and the same was done on the ASA, but still was not prompted about it.

When looking at the debugs, it shows most of the attributes that are configured for the user, but when it comes to the password management, it just does not seem to be getting that attribute from the LDAP server.  We are using Windows 2008 and AD 2008 server for it. 

Would really appreciate if got some help in solving this.



Everyone's tags (3)

Password Management

Hi Bro

I'm assuming your configuration on the Cisco ASA and LDAP is correct. Perhaps, your Cisco ASA is hitting a bug. Please refer to these URLs for further details;

P/S: if you think this comment is useful, please do rate them nicely :-)

Warm regards, Ramraj Sivagnanam Sivajanam Technical Specialist/Service Delivery Manager – Managed Service Department
CreatePlease to create content