STAS problem with user authentication on XG v16

Okie dokie, on you #Default_network_policy you need to check and make sure that "Match Users" is ticked

  notice the Orange top left 

see below:

Hi, Thanks for fast respond.

But still got the problem the user got authentication failed.

Irvin,

I would like to have a look at your configuration? I sent you a pm. thanks

Did you at any stage try and manually add any users manually, if so delete all users, delete the authentication server and start over

also if and when you get this working make DOUBLE sure that your proxy server on the XG isnt exposed to the internet, outside people

will abuse if to divert traffic, i ran into this problem and had to block the port externally with mikrotik router...

Hi, Gavin

I didn't create users locally on the XG v16 and i try the information you post in the other threat. I alredy delete de authetication server like 3 times.

My proxy server is the XG is not exposed to the outside.

Best regard

Hi, Gavin

I didn't create users locally on the XG v16 and i try the information you post in the other threat. I alredy delete de authetication server like 3 times.

My proxy server is the XG is not exposed to the outside.

Best regard

irvin,

GPO to audit account logons event was missing on the defaul domain controller policy (enable it even on default domain controller policy is recommende).

Also make sure to reboot both DC and then your Windows 7. If live users counter is not incrementing, reboot the XG.

Regards,

Hi, lferrara

This was very help full.. I will upgrade my appliance in production tomorrow and i will this step.

1 - Enable Audit on my GPO the Account event logon & event logon (Success / Failure) in both Default Domain Controllers Policy & Default Domain Policy

2 - Enable Audit on my local security policy for both Account event logon & event logon (Success / Failure)

3 - Start the STAS collector with the default time of Enable User Inactivity and put the collector IP server and port

4 - Configure the server sync with Domain Controller, import the group & put domain controller services authentication on first of the list

5 - Configure the STAS on my server (Agent, Collector, FQDN & Netbios)

With this steps is working good, can you check please?

Thanks a lot for your time

Best regard

As we did together using remote tool, your list is complete.

You welcome!