APM change AD password failed (1523862124)

Question

Hello,&nbsp;
I'm trying to implement a small change AD password page on F5 APM, simple HTTPS virtual server with access policy, as described on Internet :
- logon page step 3 on checkbox, both post and session variable on change_password
- AD Auth to my AD AAA pool.&nbsp;
I get to the logon page, the user is authenticated, only the password change itself does fail :&nbsp;
AD module: authenticate with 'test@DOMAIN.LOCAL' successfully&nbsp;
AD module: change password for 'test' failed:   (1523862124)&nbsp;
AD module: ():  (1523862124)&nbsp;
AD agent: Auth (logon attempt:0): failed to change password for 'test'&nbsp;
Anyone an idea ? Must again be something obvious but after several hours spent on the issue I still don't get it... And I'd like to have sorted out before my holidays tomorrow night :-)&nbsp;
Thanks !&nbsp;
Gerald&nbsp;

gerald_meese · Answer

Found out that UDP 464 was not allowed to the DC's&nbsp;

p_k · Answer

Assuming the users are located in AD, Does the credentials in your AAA server config have write permissions to AD controllers? &nbsp;
Do a tcpdump and see what your AD pool members are sending back.&nbsp;

gerald_meese · Answer

Thanks PK ! Found out that UDP 464 was not allowed to the DC's, problem solved...&nbsp;

p_k · Answer

Good to know!&nbsp;

Forum Discussion

APM change AD password failed (1523862124)

Recent Discussions

How to export a list of paired external service providers from APM?

How to Renew F5 Device Certificate

BIG IP LTM - Multiple application on single VIP with multiple ports allowed.

Service discovery is not happening in AS3

Statistics ›› Analytics : HTTP : Overview

Related Content

APM Customization: Password Change Validation

Password Safety & Security: Passwords vs. Passphrases

Automate scp transfers using password

BIGIQ/DCD and BIGIP Admin password change

Authentication issue when changing password

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS