Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 5 subscribers
  • Views 7363 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

ISSUE : Authentication trouble with firmware 9.502-4.

Thierry Leurent

Hello,

 

We have 2 proxies with the same firmware and the same configuration. This proxies are not in HA mode.

We have a strange trouble. Some users can't authenticate to the "master" proxy. 

Using the web interface, I test if the user can connect a site. The most of time, it's OK. If it's KO, I ask again and it become OK.

Using SSH, I go to the proxy :

- I make a "wbinfo -u | grep USERID", I find the user.

- I look into http.log for this user ID, I see nothing. 

 

I put the user on the "slave" proxy and It's work.

 

Where can I find the authenticate logs ?

The problem is known ?

 

Thanks,

Regards,

 



This thread was automatically locked due to age.
  • 0

    Hi, Thierry, and welcome to the UTM Community!

    The same thing happened to my lab UTM.  A reboot resolved the issue.  Any luck with that?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Same Issues here with 9.502-4

    - Webadmin login needs long to get in.. mostly 2 or 3 messages with the warning "wait 30 secs"

    - Userportal dont work any more.. this popup appears:

     

    the password is the right one.. tried with different users and nothing helps

    - SSL-VPN did not work any more or need 30 minutes to login

     

    we have rebooted Cluster yesterday... reboot did not help

    did not chance anything on authentication... just updated to this firmware at monday morning...

     

     

    Please help us.. this is a show stopper for us

     

    greets

    zaphod
    ___________________________________________

    Home: Zotac CI321 (8GB RAM / 120GB SSD)  with latest Sophos UTM
    Work: 2 SG430 Cluster / many other models like SG105/SG115/SG135/SG135w/...

  • 0 in reply to zaphod

    Some more infos.. this is log user authentication daemon:

     

    2017:08:11-08:10:56 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client socket timeout."
    2017:08:11-08:10:56 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client requested authentication with too few parameters"
    2017:08:11-08:11:01 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client socket timeout."
    2017:08:11-08:11:01 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client requested authentication with too few parameters"
    2017:08:11-08:11:06 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client socket timeout."
    2017:08:11-08:11:06 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client requested authentication with too few parameters"
    2017:08:11-08:11:11 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client socket timeout."
    2017:08:11-08:11:11 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client requested authentication with too few parameters"
    2017:08:11-08:11:16 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client socket timeout."
    2017:08:11-08:11:16 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client requested authentication with too few parameters"
    2017:08:11-08:11:21 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client socket timeout."
    2017:08:11-08:11:21 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client requested authentication with too few parameters"
    2017:08:11-08:11:26 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client socket timeout."
    2017:08:11-08:11:26 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client requested authentication with too few parameters"
    2017:08:11-08:11:31 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client socket timeout."
    2017:08:11-08:11:31 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client requested authentication with too few parameters"
    2017:08:11-08:11:36 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client socket timeout."
    2017:08:11-08:11:36 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client requested authentication with too few parameters"
    2017:08:11-08:11:41 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client socket timeout."
    2017:08:11-08:11:41 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client requested authentication with too few parameters"
    2017:08:11-08:11:46 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client socket timeout."
    2017:08:11-08:11:46 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client requested authentication with too few parameters"
    2017:08:11-08:11:51 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client socket timeout."
    2017:08:11-08:11:51 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client requested authentication with too few parameters"
    2017:08:11-08:11:56 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client socket timeout."
    2017:08:11-08:11:56 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client requested authentication with too few parameters"
    2017:08:11-08:12:01 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client socket timeout."
    2017:08:11-08:12:01 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client requested authentication with too few parameters"
    2017:08:11-08:12:06 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client socket timeout."
    2017:08:11-08:12:06 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client requested authentication with too few parameters"
    2017:08:11-08:12:11 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client socket timeout."
    2017:08:11-08:12:11 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client requested authentication with too few parameters"
    2017:08:11-08:12:16 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client socket timeout."
    2017:08:11-08:12:16 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client requested authentication with too few parameters"
    2017:08:11-08:12:21 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client socket timeout."
    2017:08:11-08:12:21 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client requested authentication with too few parameters"
    2017:08:11-08:12:26 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client socket timeout."
    2017:08:11-08:12:26 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client requested authentication with too few parameters"
    2017:08:11-08:12:31 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client socket timeout."
    2017:08:11-08:12:31 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client requested authentication with too few parameters"
    2017:08:11-08:12:36 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client socket timeout."
    2017:08:11-08:12:36 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client requested authentication with too few parameters"
    2017:08:11-08:12:41 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client socket timeout."
    2017:08:11-08:12:41 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client requested authentication with too few parameters"
    2017:08:11-08:12:46 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client socket timeout."
    2017:08:11-08:12:46 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client requested authentication with too few parameters"
    2017:08:11-08:12:51 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client socket timeout."
    2017:08:11-08:12:51 vpn-1 aua[4028]: id="3006" severity="info" sys="System" sub="auth" name="Client requested authentication with too few parameters"
     
    Seems to be the problem...
     
    How can i fix this?
     

    greets

    zaphod
    ___________________________________________

    Home: Zotac CI321 (8GB RAM / 120GB SSD)  with latest Sophos UTM
    Work: 2 SG430 Cluster / many other models like SG105/SG115/SG135/SG135w/...

  • 0 in reply to zaphod

    Reboot several time, Zaphod, and get a ticket started with Sophos Support!

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Cookie Information Banner