Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
991
Views
0
Helpful
1
Replies

3015 VPN & Password expiry

john.pierson
Level 1
Level 1

‎05-21-2003 04:14 AM - edited ‎02-20-2020 10:45 PM

Hi, I am currently using a 3015 (ver3.5.5), ACS (3.1) & the VPN client (3.5.1).

I would like to implement password expiry however I do not use the windows domain for authentication - I use the ACS internal database. I don't seem to be able to find anyone else doing this or config examples. Does anyone know if this is possible?

Thanks, John.

0 Helpful
1 Reply 1

owillins
Level 6
Level 6

‎05-27-2003 10:53 AM

John,

ACS (3.1) supports Password expiry configuration.

Cisco Secure ACS supports MS CHAP-based password aging feature which works with the Cisco VPN client (version 3.0 or greater). This feature prompts a user to change his or her password after a login where the user password has expired.

You will need to configure ms-chapv2 password expiration in ACS, and choose "RADIUS with Expiry" on the VPN concentrator.

Oscar

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card