dreadman2k
asked on
Does a PIX with RADIUS to Win2003 handle password renewal?
Hello,
I have a PIX 515e that users connect to via MS PPTP VPN client. Currently, the users authenticate against a list kept on the PIX box. I want to set up RADIUS authentication to a Win2003 AD network. Before I do this, I am curious about password renewal.
Our windows network requires a change of password at regular intervals. Some of the users will be away from the office when their password is due for renewal. How does the PIX box handle this? Will the users be asked to change their passwords as they connect to the VPN (the PIX box)?. Or do they have to log onto a Windows server specifically to do this?
Could someone who's seen this explain to me how it will work?
Thanks in advance!
I have a PIX 515e that users connect to via MS PPTP VPN client. Currently, the users authenticate against a list kept on the PIX box. I want to set up RADIUS authentication to a Win2003 AD network. Before I do this, I am curious about password renewal.
Our windows network requires a change of password at regular intervals. Some of the users will be away from the office when their password is due for renewal. How does the PIX box handle this? Will the users be asked to change their passwords as they connect to the VPN (the PIX box)?. Or do they have to log onto a Windows server specifically to do this?
Could someone who's seen this explain to me how it will work?
Thanks in advance!
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Thanks :)
ThanQ.
Cheers,
Rajesh
Cheers,
Rajesh
ASKER
THat was the sort of info I was looking for. It seems I was right to be concerned about the password renewal as a source of trouble.
Now that you have clued me in I can look at options. I would prefer hard tokens & such, but may be able to get it going with RADIUS & a web page for password renewal.
Again, thank you for the useful info!