Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 7 replies
  • Subscribers 3 subscribers
  • Views 7387 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Active Directory authentication

john.itworx
My name is John and I'm new to this bulletin board. I have managed to join (via SSO) my UTM (ASG Software) to my domain. I even managed to set up a new Authentication Server, well... to an extent. The Backend, Server, BindDN, Password are all fine as I checked on our AD. The test was also successful.

Now, I was told that Base DN is used only if I have more than one domain (which is not the case in my environment) so I have left it blank. When I tried the "Authenticate example user" test with my administrator credentials, it failed. When I tried with a non-existent user, I got the exact same result:

User authentication:
DENIED

User is a member of the following groups:
No groups have been found for this user 

PLEASE help me.


This thread was automatically locked due to age.
Parents
  • 0
    I tried that hey, numerous times! And I always get the same output (below), or could it maybe be something in the AD? A security feature that was be enabled/disabled?

    [Output]
    2015:08:11-09:02:24 utm aua[25518]: id="3006" severity="info" sys="System" sub="auth" name="Spawned child for authentication test"
    2015:08:11-09:02:25 utm aua[25518]: id="3006" severity="info" sys="System" sub="auth" name="Authentication test request: m:adirectory, f:none, u:administrator, ip:0.0.0.0, host:"
    2015:08:11-09:02:25 utm aua[25518]: id="3006" severity="info" sys="System" sub="auth" name="Testing method adirectory"
    2015:08:11-09:02:25 utm aua[25518]: id="3006" severity="info" sys="System" sub="auth" name="Trying 192.168.1.1 (adirectory)"
    2015:08:11-09:02:26 utm aua[25518]: id="3006" severity="info" sys="System" sub="auth" name="Authentication test failed: "
Reply
  • 0
    I tried that hey, numerous times! And I always get the same output (below), or could it maybe be something in the AD? A security feature that was be enabled/disabled?

    [Output]
    2015:08:11-09:02:24 utm aua[25518]: id="3006" severity="info" sys="System" sub="auth" name="Spawned child for authentication test"
    2015:08:11-09:02:25 utm aua[25518]: id="3006" severity="info" sys="System" sub="auth" name="Authentication test request: m:adirectory, f:none, u:administrator, ip:0.0.0.0, host:"
    2015:08:11-09:02:25 utm aua[25518]: id="3006" severity="info" sys="System" sub="auth" name="Testing method adirectory"
    2015:08:11-09:02:25 utm aua[25518]: id="3006" severity="info" sys="System" sub="auth" name="Trying 192.168.1.1 (adirectory)"
    2015:08:11-09:02:26 utm aua[25518]: id="3006" severity="info" sys="System" sub="auth" name="Authentication test failed: "
Children
No Data