Recently changed passwords don't work with Kerberos
We've run into several problems with users letting their password expire in a Windows environment, and when our Helpline changes it for them, they are not able to log in throught the VPN. They are able to access the network just fine otherwise, just not able to be authenticated through the VPN. Keep getting in the VPN logs that they are using an invalid username/password. It will eventually work in a couple of days. What could be causing the delay. Our Helpline uses DRA to interface with Active Directory to manage user accounts and the VPN clients are set to use Kerberos/Active Directory for authorization. It's almost like the VPN is not synching correctly with AD. Any help would be greatly appreciated.
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...