02-27-2015 08:16 AM
I seen previous post on this but the fix was to make changes to the domain servers which is not an option for me. We have AD accounts getting locked out from personal devices accessing our personal devices network which requires AD credentials to start the OnBoard process and move to EAP-TLS authentication. Some users never complete the OnBoard process and after 90 days their AD account expires and the device with the outdated password cause the AD account to lock.
My question is. In CPPM is there a option to do an independent lockout within CPPM that is one lower than our AD server settings? AD locks after 5 attempts and we have a few apps that have an option to do an independent lockout and we set it to 4 so it can't lockout AD. Can I do this in CPPM. Running current versions.
Solved! Go to Solution.
02-27-2015 08:33 AM
Please see the attachment from Troy's response on the thread here: http://community.arubanetworks.com/t5/AAA-NAC-Guest-Access-BYOD/When-a-user-changes-their-AD-password-because-it-expires/m-p/178570/highlight/true#M13450
Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.