Consider the following scenario:
You have a system that is running Microsoft Forefront Unified Access Gateway (UAG) 2010 Service Pack 1.
In Advanced Trunk Configuration, you enable the following features:
Notify user * days before password expiration (e.g., 7)
Then, you publish a web application.
In the domain controller, you set the Password Policy setting Maximum password age to a short time. For example, you set Maximum password age to 3 days.
Then, you log on to the UAG 2010 portal by using a user account that has the setting Password never expires disabled.
In this scenario, you receive a message that resembles the following:
Your password will expire in N+2 day(s).
Do you want to change it now?Note The placeholder N+2 represents the expected expiration time, N, plus two additional days.
For example, you set Maximum password age to 3 days. When you log on to the portal, you receive the following message:
Your password will expire in 4 day(s).
Do you want to change it now?The message that you expect to receive is as follows:
Your password will expire in 2 day(s).
Do you want to change it now?
To resolve this issue, install the rollup package that is described in the following Microsoft Knowledge Base article:
2647899 Rollup 1 for Forefront Unified Access Gateway (UAG) 2010 Service Pack 1 Update 1
Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.
For more information about software update terminology, click the following article number to view the article in the Microsoft Knowledge Base:
824684 Description of the standard terminology that is used to describe Microsoft software updates