AD password expired

Question

Dear all,I've configured a portal to give my end users the possibility to change the AD password. Now I'd like to add a feature and check if the password has expired and send them on another flow. Is there a way to accomplish this with an APM Query? I was thinking to work on pwdLastSet attribute but I need to convert it and then compare it with the configured policy. Is there a way to do it in a simpler manner?&nbsp;Thank you&nbsp;Luca

luca_comes · Accepted Answer

Hi Dave,thank you for your answer. I solved my problem putting an AD query block between the logon page and the authentication block, and intercepting if the last error contians the words "Password is expired". If any matches occur I will send the client to another flow where he does only AD authentication that force itself to change the password.&nbsp;Luca

luca_comes · Answer

Anyone who has some suggestions?

dave_w · Answer

Hello Luca, based off this you probably do this, but I don't think it would be a simple solution:&nbsp;https://ldapwiki.com/wiki/AD%20Determining%20Password%20Expiration

Forum Discussion

AD password expired

3 Replies

Recent Discussions

import live updates from version x to version y

Tenant image upgrade

iRule editor partition button does not work

F5Access | MacOS Sonoma

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Related Content

Automate scp transfers using password

Password Safety & Security: Passwords vs. Passphrases

LTM Certificate expire

Expired ssl warning

Ansible module to update BIG-IP root/admin passwords