Log in

Sangfor Support Center

Table of Contents
< All Topics
Print

[IAG] AD domain password authentication prompts the user has expired —- there is a local user with the same name with an expiration time set

Posted
Updated
Byadmin
Views2

Problem Description

When using an AD domain for external password authentication, the user authentication prompts that the user has expired, and resetting the domain user password is unsuccessful

Process——

  1. Check the AD domain server selected by the authentication policy authentication server
  2. Check the local group users and find that there is a user with the same name and set the validity period. After deleting this user, the domain user authentication is successful.

solution

If a domain user has a local user with the same name, and the authentication policy does not select the local authentication server, the local account will also be checked to see if it has expired when the user goes online.

Original Link

https://support.sangfor.com.cn/cases/list?product_id=22&type=1&category_id=6876&isOpen=true