This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

AD SSO with 2008R2 Domain Controllers

ASG 7.507

Currently a 2003 Domain and using AD SSO for authentication. Everything is fine.

When I try to change the domain controller that the ASG uses from a 2003 DC to a 2008R2 DC, there are errors. "failed to join the domain".

If I put back the original 2003 DC, everything goes back to normal. Same user account and password used in the settings.

For obvious reasons, I need to move authentication from a 2003 DC to a 2008R2 DC.

What am I missing?

Thanks.

This thread was automatically locked due to age.

Parents

0 BAlfson over 15 years ago

Can you try defining the 2008R2 DC as a DNS Host instead of using a Host definition with an IP?

When you do that with the browser configuration in the clients, it forces authentication via Kerberos instead of NTLM. I interpreted a thread in the V8 beta as indicating that the same problem happens when trying to join the Astaro to the domain.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel
0 mbrophy over 15 years ago in reply to BAlfson

I did as you asked.

The SSO settings won't allow me to add a DNS Host in that section. It will only allow "regular" Hosts. Everytime I try to add it to the section, it gets refused by the ASG.

Clearly I can't be the first person to try to put an ASG on a 2008R2 Domain can I?
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 mbrophy over 15 years ago in reply to BAlfson

I did as you asked.

The SSO settings won't allow me to add a DNS Host in that section. It will only allow "regular" Hosts. Everytime I try to add it to the section, it gets refused by the ASG.

Clearly I can't be the first person to try to put an ASG on a 2008R2 Domain can I?
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data