Hi, We are in the process of migrating 2 old AD Domains (A & B) into a new 3rd one (C). Part of this project is to allow users of Domain C to login into network using NC via the SA4500. Using the smae OTP Authenticators that are used with login for Domain A. Please ignore Domain B users as they don't use this solution yet. I have setup a new login page and AD Auth Server for Domain C, this works fine. A strange problem arises when a User logs in with Domain C credentials and with their OTP Authenticator, who doesn't have an account in Domain A. The SA authenticates the AD credentials fine but fails the 2nd check for the OTP Authenticator with the following errors ' Secondary authentication failed for Username from IP ' & ' Login failed using auth server (Radius Server). Reason: Failed' . The odd thing is that looking through the audit logs on the server for the OTP Authenticator software the user has passed the credential check. Any ideas would be greatly appreciated. Our SA4500FIPS is running 7.1R10 if that helps. Thanks, Dan
... View more