This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

AD-SSO not working

Hello,

I am trying to configure AD-SSO with Astaro using Proxy. I searched a lot looking for a step-by step document explaining what exactly should i do but could not find much. All i got was the below document specified in the url:

http://www.sophos.com/en-us/support/knowledgebase/2550/2450/3850/115659.aspx

I have followed the steps in the url and configured it. Now when i click on test user in the Webadmin ( Definition & Users>Authentication Servers>Base DN) by giving my credentials it tests ok. i tried giving wrong credentials also it contacts AD and gave error of wrong credentials. So this seems to be working..Previously i was running Transparent Mode with No Authentication that i changed to Standard Mode with AD-SSO Authentication.

Now i have only allowed my user and restricted all other users for testing. I configured IE with Proxy of Astaro's internal address with port 8080.. That's not working.. As i tried to surf i was allowed internet, that's fine as i allowed my user, but then i logged in with different user which is blocked but still Internet was available and he could surf everything.

So please let me know if i am missing anything in configuration, or if anybody has a guide explaining step by step procedure what needs to be done in Astaro, AD server and Client Browser side then please share.

This thread was automatically locked due to age.

Parents

0 dhyanesh.mehta over 13 years ago

Ok update to my posts.

I tested it in Test Environment. Everything worked fine for Astaro 8.202. Joining to Domain works, AD-SSO works, proxy works, even when i did not allow in the authenticated users list and logged in with his account and opened browser it popped up for credentials too.

Then i updated to 8.301 and everything was working fine as well. Then comes the problem. Updating to 8.302 or 303 or 304 or the latest 305, everything stops working. I can not join Astaro in domain at all. I followed the instruction that removed the old Astaro account from AD and tried to join in domain. It does not work at all.

I read on Astaro forums that this is a bug with Astaro 8.302 onwards release. They have changed Samba and hence AD Authentication does not work at all.

Can somebody else confirmed is this a bug with new release of Astaro or is there any work around? May be this is the reason why AD-SSO did not work for us int he Production Environment in the first place as we straight away tried in 8.304. But in test environment trying for 8.201 the steps we were following worked perfectly.

Please some help is needed guys.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 dhyanesh.mehta over 13 years ago

Ok update to my posts.

I tested it in Test Environment. Everything worked fine for Astaro 8.202. Joining to Domain works, AD-SSO works, proxy works, even when i did not allow in the authenticated users list and logged in with his account and opened browser it popped up for credentials too.

Then i updated to 8.301 and everything was working fine as well. Then comes the problem. Updating to 8.302 or 303 or 304 or the latest 305, everything stops working. I can not join Astaro in domain at all. I followed the instruction that removed the old Astaro account from AD and tried to join in domain. It does not work at all.

I read on Astaro forums that this is a bug with Astaro 8.302 onwards release. They have changed Samba and hence AD Authentication does not work at all.

Can somebody else confirmed is this a bug with new release of Astaro or is there any work around? May be this is the reason why AD-SSO did not work for us int he Production Environment in the first place as we straight away tried in 8.304. But in test environment trying for 8.201 the steps we were following worked perfectly.

Please some help is needed guys.
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data