Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 42 replies
  • Subscribers 1 subscriber
  • Views 20587 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

AD BASE DN Problem

color_n
hello

i have problem with authenticating users over AD , they all pass my proxy filter 

2010:02:18-14:53:17 astaro httpproxy[31000]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="10.0.23.21" user="" statuscode="304" cached="0" profile="REF_OIKbLRYudm (AD_proxy users)" filteraction="REF_DefaultHTTPCFFBlockAction (Default content filter block action)" size="0" time="60 ms" request="0xa6cb0f00" url="googleads.g.doubleclick.net/.../test_domain.js" exceptions="av,auth,content,url,certcheck,certdate,mime,cache" error=""  

this is just an example , this is server configuration

BIND DN :
CN=Administrator,CN=Users,DC=mydomain,DC=local
BASE DN :
DC=mydomain,DC=local

do i need to create OU on AD , or just groups with users ? 

please advice how to solve this situation .

Thanks in advance


This thread was automatically locked due to age.
Parents
  • 0
    That's authentication failure is what I get when I supply an incorrect password for the test.  This all looks correct now, so please change the password for this user on the AD server and try again.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    That's authentication failure is what I get when I supply an incorrect password for the test.  This all looks correct now, so please change the password for this user on the AD server and try again.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
  • 0 in reply to BAlfson
    i have tried to do so , but no luck , i have 2 domain controllers win2003 server in cluster, dont know if that makes any difference , i have make only one authentication  with first domain .
    it is very strange that there is no change on behavior regardless of changing configuration , every time there is no luck with check of authentication .