Hi, I’m using DUO for 2FA for windows logon, and we sync our solution with AD.
The issue is once the user exipered his password, the authentication with DUO failed and didn’t give the user to authenticate in order to change his password. any workournd to apply in this similare case.
Hi @YOMG ,
Duo for Winlogon supports Windows password resets if the “User must change password at next logon” option is enabled for an AD user account or if a user account’s AD password expires. Please see https://help.duo.com/s/article/5494.
In order to troubleshoot this issue, you may choose to enable debug-level logging, have the user attempt to log in again, and then view the log file to see what the issue may be. If necessary, you can contact our Support team for further assistance with this unexpected behavior.
How to interpret and troubleshoot Duo Authentication for Windows Logon debug logs
Hope this helps!