Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 5 replies
  • Answers 1 answer
  • Subscribers 5 subscribers
  • Views 11807 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Can't log into User Portal

gr33ny

Hi

I have an SG210 Running 9.406-3, we are trying to log into the User Portal but each time we try we are denied access.

We have successfully logged into the User Portal in the past which we have used to download the SSL VPN client and setup our devices for two factor authentication.  We use our Active Directory accounts to log into the portal.

When I look at the authentication Live Log I can see the following is happening when we attempt to log in (I have purposefully put 0.0.0.0 in):

 

2016:12:20-14:02:16 utm aua[16597]: id="3006" severity="info" sys="System" sub="auth" name="Trying 0.0.0.0 (adirectory)"

2016:12:20-14:02:16 utm aua[16597]: id="3006" severity="info" sys="System" sub="auth" name="OTP verification did not succeed, failing authentication."

2016:12:20-14:02:16 utm aua[16597]: id="3005" severity="warn" sys="System" sub="auth" name="Authentication failed" srcip="0.0.0.0" host="" user="user.name" caller="portal" reason="DENIED"

 

I have not been presented with a request for a second factor when logging into the user portal.  This is the case for all accounts able to log into the User Portal.  I am able to use my SSL VPN client with my AD username & two factor OK.

 

We are able to log into the Web Admin portal using AD without issue.

 

Many thanks



This thread was automatically locked due to age.
Parents
  • 0

    Hi,

    Thanks for the logs, it shows that the OTP verification failed which is why the users are not able to login. I would recommend you to upgrade the firmware and check if the issue gets resolved. If not, enable debug for aua deamon. When the user authenticates check if the credentials are correct and the OTP code is verified.

    Thanks

  • 0 in reply to sachingurung

    Hi guys


    I'm having the same issue also.

     

    I couldnt login using any Admin or User accounts that used 2FA.. I came home 2 hours later and I was able to log straight in. Some of these users back onto Active Directory, and some are Local users with 2FA . 

    Any ideas, it seems like some sorta bug as nothing has changed but mutliple users using 2FA and Google Authenticator complained of the issue.

     

     

    2017:03:15-17:28:31 34 aua[3092]: id="3006" severity="info" sys="System" sub="auth" name="Child 13832 is running too long. Terminating child"
2017:03:15-17:28:31 34 aua[14168]: id="3006" severity="info" sys="System" sub="auth" name="Trying 172.18.110.115 (adirectory)"
2017:03:15-17:28:31 34 aua[14168]: id="3006" severity="info" sys="System" sub="auth" name="OTP verification did not succeed, failing authentication."
2017:03:15-17:28:31 34 aua[14168]: id="3005" severity="warn" sys="System" sub="auth" name="Authentication failed" srcip="82.12.151.230" host="" user="phood" caller="portal" reason="DENIED"
2017:03:15-17:29:10 34 aua[3092]: id="3006" severity="info" sys="System" sub="auth" name="Child 14168 is running too long. Terminating child"
2017:03:15-17:29:10 34 aua[14234]: id="3006" severity="info" sys="System" sub="auth" name="Trying 172.18.110.115 (adirectory)"
2017:03:15-17:29:10 34 aua[14234]: id="3005" severity="warn" sys="System" sub="auth" name="Authentication failed" srcip="82.12.151.230" host="" user="phood" caller="portal" reason="DENIED"
2017:03:15-17:29:23 34 aua[14242]: id="3006" severity="info" sys="System" sub="auth" name="Trying 172.18.110.115 (adirectory)"
2017:03:15-17:29:23 34 aua[14242]: id="3006" severity="info" sys="System" sub="auth" name="OTP verification did not succeed, failing authentication."
2017:03:15-17:29:23 34 aua[14242]: id="3005" severity="warn" sys="System" sub="auth" name="Authentication failed" srcip="82.12.151.230" host="" user="phood" caller="portal" reason="DENIED"
2017:03:15-17:31:41 34 aua[3092]: id="3006" severity="info" sys="System" sub="auth" name="Child 14242 is running too long. Terminating child"
2017:03:15-17:31:41 34 aua[14487]: id="3006" severity="info" sys="System" sub="auth" name="Trying 172.18.110.115 (adirectory)"
2017:03:15-17:31:41 34 aua[14487]: id="3006" severity="info" sys="System" sub="auth" name="OTP verification did not succeed, failing authentication."
2017:03:15-17:31:41 34 aua[14487]: id="3005" severity="warn" sys="System" sub="auth" name="Authentication failed" srcip="82.12.151.230" host="" user="phood" caller="portal" reason="DENIED"
2017:03:15-17:31:41 34 aua[14487]: [WARN-070] Too many failed logins





Reply
  • 0 in reply to sachingurung

    Hi guys


    I'm having the same issue also.

     

    I couldnt login using any Admin or User accounts that used 2FA.. I came home 2 hours later and I was able to log straight in. Some of these users back onto Active Directory, and some are Local users with 2FA . 

    Any ideas, it seems like some sorta bug as nothing has changed but mutliple users using 2FA and Google Authenticator complained of the issue.

     

     

    2017:03:15-17:28:31 34 aua[3092]: id="3006" severity="info" sys="System" sub="auth" name="Child 13832 is running too long. Terminating child"
2017:03:15-17:28:31 34 aua[14168]: id="3006" severity="info" sys="System" sub="auth" name="Trying 172.18.110.115 (adirectory)"
2017:03:15-17:28:31 34 aua[14168]: id="3006" severity="info" sys="System" sub="auth" name="OTP verification did not succeed, failing authentication."
2017:03:15-17:28:31 34 aua[14168]: id="3005" severity="warn" sys="System" sub="auth" name="Authentication failed" srcip="82.12.151.230" host="" user="phood" caller="portal" reason="DENIED"
2017:03:15-17:29:10 34 aua[3092]: id="3006" severity="info" sys="System" sub="auth" name="Child 14168 is running too long. Terminating child"
2017:03:15-17:29:10 34 aua[14234]: id="3006" severity="info" sys="System" sub="auth" name="Trying 172.18.110.115 (adirectory)"
2017:03:15-17:29:10 34 aua[14234]: id="3005" severity="warn" sys="System" sub="auth" name="Authentication failed" srcip="82.12.151.230" host="" user="phood" caller="portal" reason="DENIED"
2017:03:15-17:29:23 34 aua[14242]: id="3006" severity="info" sys="System" sub="auth" name="Trying 172.18.110.115 (adirectory)"
2017:03:15-17:29:23 34 aua[14242]: id="3006" severity="info" sys="System" sub="auth" name="OTP verification did not succeed, failing authentication."
2017:03:15-17:29:23 34 aua[14242]: id="3005" severity="warn" sys="System" sub="auth" name="Authentication failed" srcip="82.12.151.230" host="" user="phood" caller="portal" reason="DENIED"
2017:03:15-17:31:41 34 aua[3092]: id="3006" severity="info" sys="System" sub="auth" name="Child 14242 is running too long. Terminating child"
2017:03:15-17:31:41 34 aua[14487]: id="3006" severity="info" sys="System" sub="auth" name="Trying 172.18.110.115 (adirectory)"
2017:03:15-17:31:41 34 aua[14487]: id="3006" severity="info" sys="System" sub="auth" name="OTP verification did not succeed, failing authentication."
2017:03:15-17:31:41 34 aua[14487]: id="3005" severity="warn" sys="System" sub="auth" name="Authentication failed" srcip="82.12.151.230" host="" user="phood" caller="portal" reason="DENIED"
2017:03:15-17:31:41 34 aua[14487]: [WARN-070] Too many failed logins





Children