How To create Custom Password Expiry Message on Global Protect

How To create Custom Password Expiry Message on Global Protect

15699
Created On 07/24/20 14:36 PM - Last Modified 12/02/22 04:09 AM


Objective


  • PAN OS has a custom message feature that when GlobalProtect user has reaching out to the maximum password expiration date,
  • Administrator can configure the custom message instead of default password expiry message that generated from PAN OS.   

Environment


  • Any Palo Alto Firewall
  • PAN-OS. 8.1, 9.0, 9.1, 9.2
  • Global Protect 5.15
  • LDAP(AD) is required. 

Procedure


  1. Navigate to  GUI: Network > GlobalProtect > Portal > Agent > App >  Custom Password Expiration Message (LDAP Authentication Only)
  2. Click on "OK" and Commit the configuration
 
User-added image
 
  1. Maximum Password Age can be modified using the Group Policy Management Editor on AD Server. Here is the simple instruction to access the Group Policy Management Editor
  • Open the Control Panel on the start Menu
  • Click the Windows icon on the Toolbar, and the click the widget icon for Setting
  • Type "gpedit"
 

Additional Information


Check the LDAP Maximum password Age configuration using Password Expiry Warning on GlobalProtect Client
 
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u0000008UznCAE&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language