07-18-2014 08:03 AM
I've googled this and can't wrap my head around what I am doing wrong.
He is my current situation:
Windows 2008 R2 Server with NPS configured and authenticating users under normal circumstances.
But when a user has an expired or is forced to change his password at next logon, the NPS server refuses connexion of this user.
What am I missing? Any help would be appreciated!
At this point, I am tempted to simply create a new hidden SSID in WPA2-PSK mode as I know this works, but security sucks!
07-18-2014 08:07 AM
If you are doing machine authentication at the login screen, it should prompt the user to change their password since it will still be authenticated as a machine.
The high level solution for password expiration across all devices (not just AD-joined machines) is to deploy user certificates.
07-18-2014 08:44 AM - edited 07-18-2014 08:45 AM