New Contributor

User is unable to login once his Password is expired



At one of our customer, we implemented Clearpass (Dot1x) with Cisco Switches and Wireless Controller, they are saying any way to user can connect to network if his Password expired. Scenario is below:


At Clearpass we are observing Denying access due to authentication fail.


Is there any possibility to allow user to change password by moving to Quarantine VLAN and once he is able to change password moved back to normal VLAN.




Guru Elite

Re: User is unable to login once his Password is expired

This does not answer your question, but please consider using machine authentication only with EAP-TLS which disassociates usernames and passwords from wired authentication.  If these are domain computers, autoenrollment with EAP-TLS automatically renews certificates, making the procedure automatic.

*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.4 User Guide
InstantOS 8.3 User Guide
Airheads Knowledgebase
Airheads Learning Videos
Aruba Central Documentation
Sign up for Security Alerts
Aruba Technical Webinars
Search Airheads
Showing results for 
Search instead for 
Did you mean: