cancel
Showing results for 
Search instead for 
Did you mean: 

Login failed using auth server ADviaLDAP (LDAP Server). Reason: Failed

Occasional Visitor

Login failed using auth server ADviaLDAP (LDAP Server). Reason: Failed

Hi,

I have a user who has travelled overseas and since he has been overseas cannot connect to the vpn.

The error is not providing enough information either:

Please find a cut down version of the logs.

I have replaced the user name with TEXT, ip address with either x, xx or ip.

If you can help me resolve this will be great

 

-------------------------

Info AUT23457 2019-08-02 05:19:10 - ive - [ip] TEXT(Users)[] - Login failed using auth server ADviaLDAP (LDAP Server). Reason: Failed
Info AUT24327 2019-08-02 05:19:10 - ive - [ip] TEXT(Users)[] - Primary authentication failed for TEXT/ADviaLDAP from xx.xx.xx.xx
Info AUT23457 2019-08-02 05:18:38 - ive - [ip] TEXT(Users)[] - Login failed using auth server ADviaLDAP (LDAP Server). Reason: Failed
Info AUT24327 2019-08-02 05:18:38 - ive - [ip] TEXT(Users)[] - Primary authentication failed for TEXT/ADviaLDAP from xx.xx.xx.xx
Info AUT31014 2019-07-27 16:46:17 - ive - [ip] TEXT(Users)[LaptopVPNAccess, Access MyPC] - Closed connection to TUN-VPN port 443 after 113 seconds, with 2435409 bytes read (in 1 chunks) and 951061 bytes written (in 16 chunks)
Info NWC23465 2019-07-27 16:46:17 - ive - [ip] TEXT(Users)[LaptopVPNAccess, Access MyPC] - VPN Tunneling: Session ended for user with IPv4 address x.x.x.x
Info AUT22673 2019-07-27 16:46:17 - ive - [ip] TEXT(Users)[LaptopVPNAccess, Access MyPC] - Logout from xx.xx.xx.xx (session:00000000)
Info NWC30477 2019-07-27 16:44:30 - ive - [ip] TEXT(Users)[LaptopVPNAccess, Access MyPC] - VPN Tunneling: User with IP 172.20.8.17 connected with ESP transport mode.
Info NWC23508 2019-07-27 16:44:30 - ive - [ip] TEXT(Users)[LaptopVPNAccess, Access MyPC] - Key Exchange number 1 occurred for user with NCIP x.x.x.x

1 REPLY 1
Moderator
Moderator

Re: Login failed using auth server ADviaLDAP (LDAP Server). Reason: Failed

Please start policy tracing and TCP dump on the VPN server and review to find out the cause.

Policy Tracing:

Maintenance -- Troubleshooting -- User sessions --- Policy Trace; Enable preauthentication, authentication, role-mapping -- Start recording.

TCP Dump: Take a dump if LDAP (cleartext) is used for authentication.

Maintenance -- Troubleshooting -- Tools -- TCP Dump; Enter the filter as "host<space>LDAP server IP address" (without quotes).