Wireless Access

Reply
Regular Contributor I
Posts: 181
Registered: ‎10-20-2010

CPPM AD Account Lockout

I seen previous post on this but the fix was to make changes to the domain servers which is not an option for me.  We have AD accounts getting locked out from personal devices accessing our personal devices network which requires AD credentials to start the OnBoard process and move to EAP-TLS authentication.  Some users never complete the OnBoard process and after 90 days their AD account expires and the device with the outdated password cause the AD account to lock.

 

My question is. In CPPM is there a option to do an independent lockout within CPPM that is one lower than our AD server settings?   AD locks after 5 attempts and we have a few apps that have an option to do an independent lockout and we set it to 4 so it can't lockout AD.  Can I do this in CPPM.  Running current versions.

 

 

Guru Elite
Posts: 20,788
Registered: ‎03-29-2007

Re: CPPM AD Account Lockout

Please see the attachment from Troy's response on the thread here:  http://community.arubanetworks.com/t5/AAA-NAC-Guest-Access-BYOD/When-a-user-changes-their-AD-password-because-it-expires/m-p/178570/highlight/true#M13450



Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Search Airheads
Showing results for 
Search instead for 
Did you mean: