• Godort@lemm.ee
    link
    fedilink
    arrow-up
    20
    ·
    edit-2
    4 months ago

    This usually means that your old password expired and the system didnt notify you. Basically, your account is inactive until you set a new password.

    • Darkassassin07@lemmy.ca
      link
      fedilink
      English
      arrow-up
      13
      ·
      4 months ago

      Any system I’ve ever used that expires passwords, forces you to set a new one upon logging in with the expired one.

      It doesn’t just lock you out and expect you to figure out on your own that you’ve gotta reset it via the ‘forgot your password’ link.

      • Godort@lemm.ee
        link
        fedilink
        arrow-up
        8
        ·
        4 months ago

        Those systems are well designed (save for the part that they’re using password expiry)

        There are a lot more shitty programmers out there than good ones

      • cron@feddit.org
        link
        fedilink
        arrow-up
        6
        ·
        4 months ago

        Oh, Microsoft Active Directory does this, when you log in via a method that doesn’t allow changing the passwords (e.g. VPN login over RADIUS).

    • antimidas@sopuli.xyz
      link
      fedilink
      arrow-up
      3
      ·
      4 months ago

      That, or the system has a transparent lockout, where if you type your password wrong for e.g. 3 times it’ll stop accepting new tries for a specific duration to stop people trying to guess the password. I’ve run into this type of brute forcing prevention multiple times, though IMO the correct approach would be 2FA coupled with proper passwords instead.