Unable to authenticate MS AD users for SSL VPN Connection 5

manjum58 Lv1Posted 04 Mar 2022 17:19


Hi there,
My NGAF SSLVPN is working perfect with users present in local DB of NGAF, also imported MS Active Directory Users successfully. while trying to connect VPN via MS AD user, Easy Connect always gives error "username or password is incorrect" seems it is unable to authenticate via AD. My AD is authenticating users for other purposes within LAN only VPN users are having issues.

Is there any recommendation or prerequisite configuration needs to be done on Active Directory side or may be on NGAF site.

Liew has solved this question and earned 10 coins.

Posting a reply earns you 2 coins. An accepted reply earns you 20 coins, 5 coins of bounty and another 10 coins for replying within 10 minutes. (Expired) What is Coin?

Enter your mobile phone number and company name for better service. Go

Good day! Could you test the AD validity? Is it valid?
Kindly check whether the user's username appear in the SSLVPN Users, if yes, we appreciate if you could show us the user details screenshot by clicking the user.
Is this answer helpful?
Faisal Lv7Posted 18 Apr 2022 22:40
  
User Filtering Field configured for the virtual gateway certificate authentication is incorrect. As a result, the device obtains an incorrect user name from the user certificate when you log in to the device.
Osama Muhammad Lv3Posted 24 Apr 2022 06:23
  
Dear Manjum,
Easy Connect is the software to connect your office network, it not connects with your domain users.
You have to create a user in SSL VPN option in Firewall and assign the pool which vpn user will be able to access it.
I hope my answer will resolve your problem.
Liew Lv2Posted 25 Apr 2022 15:31
  
Good day! Could you test the AD validity? Is it valid?
Kindly check whether the user's username appear in the SSLVPN Users, if yes, we appreciate if you could show us the user details screenshot by clicking the user.
ArsalanAli Lv1Posted 27 May 2022 21:33
  
No, there no prerequisite configuration on Active Directory needed. Just check the WAN Links and Try to remove and Recrate User
kmrnliaqat Lv2Posted 01 Jun 2022 18:25
  
informative ..

I Can Help:

Change

Moderator on This Board

1
67
3

Started Topics

Followers

Follow

Board Leaders