Scope:
This solution replies to:
- NG Firewall firmware versions 4.2.x, 5.0.x, 5.2.x
- netfence firmware versions 4.2.x
- NG Firewall firmware versions 4.2.x, 5.0.x, 5.2.x
- netfence firmware versions 4.2.x
Symptoms:
The user can't authenticate on the Microsoft Active Directory. You will see the following lines in the "Log" > "Box" > "Control" > "phibs.log":
ID-39593-1213960046-1: Request: type=userauthex user=user03 service= scheme=msad
ID-39593-1213960046-1: Result: "Authentication failed" (2); Server: farnsworth
ID-39593-1213960046-1: Reply: type=userauthex user=user03 service= result = Fail (Authentication failed)
Solution:
The phibs-deamon authenticates the user with ldap towards the active director. Then in this special configuration the domain controller refuses the user authentication.
User authentication towards the MSAD ist not possible when the users access is restricted to a special client. You have to change the user authentication settings in the MSAD to "all computers".
Link to This Page:
https://campus.barracuda.com/solution/50160000000IKaOAAW