Thread Info
  • State Suggested Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 8 replies
  • Answers 2 answers
  • Subscribers 30 subscribers
  • Views 5525 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

User Portal Auth Not Working

Peter Geremia

Hello,

 

I finally migrated over from v17 to v18.

 

I use the VPN functionality so it is critical the users can log into the User Portal to download the required assets for remote access.

 

Since migrating to v18 I cannot get ANY authorized users to log into the User Portal.  I check the log and it says credentials are invalid.  But they are not!!

 

I spun up a clean VM of v18, created a user and no problem logging into the User Portal.

I then restore my previous v18 config and once again the User Portal is locked out.

 

Another issue I am having is I cannot delete a user.  This uses was an AD user and when I try to delete I get a message stating that the user has a firewall rule, web rules etc associated with it.   I searched EVERYWHERE and cannot find the reference.

 

Any help would be HIGHLY appreciated.  I have already spent way too much time on this.

 

Thank You,

 

Peter Geremia

 

Ps.  I am dreading my only alternative which is to hand build from scratch....



This thread was automatically locked due to age.
Parents
  • +1

    Hi Peter,

     

    Try the below. I had the same issue and figured out that the MAC BINDING was enabled under AUTHENTICATION->SELECT THE USER and it was blocking the credentials. Try disabling it and then see if the user can login, if you need it on then enable it after they have logged in and it will save the new mac address, but they will need to use that mac when connecting again so if they connect via LAN they wont be able to connect via WLAN unless you create a list under the ENABLE section. 

  • 0 in reply to KyleVM

    Hello,

     

    Well I finally figured it out.  I guess I turned on One-Time Password (for all users).  I did not realize that even if you dont DEFINE a OTP for a user, it is still expecting one!!!!

    Once I shut off OTP I could log in.

    I will turn it back on and make sure I define OTP for all users..

    Thanks for the help.  I appreciate it!

    -Pete

  • 0 in reply to Peter Geremia

    In our case we experienced all of this and none of the fixes suggested above helped. We use AD authentication on the user portal and had recently upgraded from an SG to an XG. We got on with Sophos Support and noticed that the search query for the AD server was incorrectly setup. Instead of having it set as one string "dc=domain,dc=local", it was stacked in the box which resulted in two separate strings. So even though the server tested successfully, because the password was correct on the ADS username, user portal authentication was failing. The only place you will catch this - if you don't see it with the naked eye - would be when you try and import an AD OU. It will error out fetching the OU.

     

    Problem fixed.

Reply
  • 0 in reply to Peter Geremia

    In our case we experienced all of this and none of the fixes suggested above helped. We use AD authentication on the user portal and had recently upgraded from an SG to an XG. We got on with Sophos Support and noticed that the search query for the AD server was incorrectly setup. Instead of having it set as one string "dc=domain,dc=local", it was stacked in the box which resulted in two separate strings. So even though the server tested successfully, because the password was correct on the ADS username, user portal authentication was failing. The only place you will catch this - if you don't see it with the naked eye - would be when you try and import an AD OU. It will error out fetching the OU.

     

    Problem fixed.

Children
No Data