Forum Discussion

Cory_Blankenshi's avatar
Cory_Blankenshi
Icon for Altostratus rankAltostratus
Sep 16, 2019

BIG-IP v14: Expired Password Prompt for Remote Auth Users

We recently upgraded to BIG-IP v13 to v14. We used remote authentication while on the previous version and users had no issue logging in with their AD credentials. After the upgrade, some of these us...
authentication
BIG-IP
security
youssef1's avatar
youssef1
Icon for Cumulonimbus rankCumulonimbus

Hi,

 

Ok sorry, maybe impacted user trigged "Password policy", you can set an Expiration Warning, you can specifies the number of days prior to password expiration that the system sends a warning message to a user.

 

Can you check using this procedure:

System -> Users -> Authentication

Under password policy locate secure password enforcement setting and set it to meet your needs.

 

But you can confirm that GUI auth is in local or trough an AD?

User impacted is in local or they used AD, Because now you can fallback in local for authentication... If ad failled to find user.

 

for more info:

https://support.f5.com/csp/article/K15497

 

regards

Cory_Blankenshi's avatar
Cory_Blankenshi
Icon for Altostratus rankAltostratus
Sep 16, 2019

Hi Youssef,

 

The user that raised the issue doesn't have a local account, so I wouldn't think it would be subject to a password policy on the F5. On that note, I don't have a password policy option under the authentication tab. Also, it's probably worth mentioning that local accounts we have use our Active Directory credentials.

 

Thanks!