Home Forums CA Single Sign-On [RESOLVED] CA SSO: 12.52.101.640 – Expired user able to login Reply To: [RESOLVED] CA SSO: 12.52.101.640 – Expired user able to login

#926

ujwols
Keymaster

Hi Dilip,

Yes, there has been some changes around this in CR5/CR6 in an attempt to fix this password expired use case but the changes were NOT complete.

The expected result for password expired use case (AD error code : data 532) is :

1. If Enhance AD Enabled:
smauthreason=19 , redirection to smpwservices.fcc for forcing the user to change password.

2. If Enhanced AD Disabled:
smauthreason=0, redirection to login.fcc (failed login)

Please note this expired password fix is finally delivered(complete) in 12.52SP1CR8

Regards,
Ujwol

  • This reply was modified 7 months, 2 weeks ago by  ujwols.