Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 1 subscriber
  • Views 2267 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Web Authentication fails

lbiw
We have noticed in the past week that users are having failed authentication when trying to access the User Portal, and even when trying to authenticate through the web browser for internet access.

secondary to this issue is RED clients being unable to authenticate through the AAA, which is why they are authenticating through the web browser.

I know for a fact that the credentials being supplied are correct, and what makes it more worry some is that the user(s) can authenticate to the User Portal through RDP'ing to another machine.

User1 ->  AAA running, opens web browser tries to log into User Portal -> Invalid Username/Password.

User1 -> RDP to another machine, AAA running with same credentials, opens web browser, Logs into User Portal no problem.

RedUser2 -> no AAA, uses web authentication, invalid username/password.  

*edit*  RedUser2 was not listed in Web Filter Assignments.  this is resolved.  User1 is still an issue.


This thread was automatically locked due to age.
  • 0
    Please show the lines from the User authentication daemon log.  Also, confirm that User1's IP is in an allowed network for the Enduser Portal.

    Cheers - Bob
  • 0
    I can confirm they are allowed, as they have had access in the past.  It's is just in the past week that a few users (who do get web authentication through AAA) have been denied access to the User Portal when signing in from their local computer.

    *edit*  attached log

    2012:03:02-09:11:00 vpn aua[14637]: id="3006" severity="info" sys="System" sub="auth" name="Trying 192.168.10.2 (adirectory)"
    2012:03:02-09:11:00 vpn aua[14637]: id="3004" severity="info" sys="System" sub="auth" name="Authentication successful" srcip="192.168.10.23" user="first.name" caller="endpoint" engine="adirectory"

    2012:03:02-09:23:04 vpn aua[15740]: id="3006" severity="info" sys="System" sub="auth" name="Trying 192.168.10.2 (adirectory)"
    2012:03:02-09:23:05 vpn aua[15740]: id="3005" severity="warn" sys="System" sub="auth" name="Authentication failed" srcip="192.168.10.23" user="first.name" caller="portal" reason="DENIED"