While doing a PoC of the Unified Access Gateway we discovered that it does not allow a user with a expired password to login and fails with "Access denied". We've tested this with the Horizon Client for Mac, Windows and iOS and the experience is the same. Logging in using a Dell P25 zero client or with a Horizon Client that points directly to the connection server correctly prompt the user that the password is expired and allows them to enter the old and new password to update it. We have an open support case but keep getting conflicting answers on whether this should or shouldn't work with the UAG. We do happen to have a RADIUS server configured for MFA and I suspect this is why it doesn't work. Can anyone let us know whether this should or shouldn't work?
↧