This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

AD account lock

Hi all

Can any one tell me why AD accounts keeps getting locked out?
DC event log show that Source is Sophos UTM reverse proxy...

I see entries like this:

2015:05:06-09:46:38 cphfirewall aua[3653]: Malformed UTF-8 character (unexpected non-continuation byte 0x64, immediately after start byte 0xf8) in bitwise xor (^) at /usr/local/ap510/site/lib/Authen/Radius.pm line 334.
2015:05:06-09:46:38 cphfirewall aua[16595]: id="3005" severity="warn" sys="System" sub="auth" name="Authentication failed" srcip="10.45.205.137" host="" user="x@mail.net" caller="reverseproxy" reason="DENIED"

And

2015:05:06-10:18:53 cphfirewall aua[21628]: id="3005" severity="warn" sys="System" sub="auth" name="Authentication failed" srcip="10.45.205.131" host="" user="domain\x" caller="reverseproxy" reason="DENIED"

This started yesterday and more and more AD users are beeing locked out...

Thanks

This thread was automatically locked due to age.

Parents

0 jkm005 over 10 years ago

I found the reason for the first error.. Users having special characters in their passwords. Strange since passwords where ok for weeks until yesterday.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 jkm005 over 10 years ago

I found the reason for the first error.. Users having special characters in their passwords. Strange since passwords where ok for weeks until yesterday.
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data