Ensure you are logged in as Active Roles admin and navigate to Customization Tab on the left pane. There are at least two interfaces where Password Never Expires command needs to be removed from. These can be found in General tab under Account and at Reset Password tab under Account Options.
Step 1: Removing it from General and Account Tab
1. Go to Customization Task
2. Click on Customization Tasks
3. Under Menu for find User
4. Locate and open General Properties and then Account
5. On the right pane click on Edit Form
6. On the right pane check Account Options and Delete taking note of every other command under property column except for edsaPasswordNeverExpires as the following
(edsaAccountIsDisabled edsaAccountIsSensitiveAndCanNotBeDelegated, edsaAccountIsTrustedForDelegation, edsaDoNotRequireKerberosPreauthentication, edsaSmartCardIsRequired, edsaStorePasswordUsingReversibleEncryption, edsaUseDESEncryptionTypesForThisAccount, edsaUserCannotChangePassword, edsvaUserMustChangePasswordAtNextLogon)
7. Next is to create entry for each of the commands on step 6 manually and add them to show/hide in the Tab
8. Click Add Entry and then Create
9. In the following screen under the Property list locate and select every individual commands noted on step 6 then click Next
10. Type appropriate names in the Entry name field as this will read the same on the interface (e.g for edsaAccountIsDisabled Entry Name: Account is Disabled) repeat the same for all the required commands as noted in step 6.
11. Click on Add Entry and this time choose Select from the drop down
12. All the custom entries created should now be listed here under Entry name column, check each one required to show and click Finish at the bottom of this tab.
Step 2: Removing it from Reset Password Tab
1. Go to Customization Task
2. Click on Customization Tasks
3. Under Menu for find User
4. Locate and open Reset Password
5. On the right pan click on Edit Form
6. Check by selecting Account Options and then Delete
7. Click on Add Entry and choose Select from dropdown menu
8. Locate edsvaUserMustChangePasswordAtNextLogon with entry name User Must Change Password At next logon and edsaUserCannotChangePassword with entry name User Cannot Change Password created in step 10 under Entry name column, check them and click Finish at the bottom of this tab.
© 2024 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy Cookie Preference Center