AD SSO Service Starts, But Client Not Performing SSO
I hope someone can help me with this issue.
I have a NAC environment in which NAM and NAS are operating in high availability mode. The NAS is in Out-of-band Virtual gateway mode, and I have configured AD-SSO.
Users in local database (NAM) can authenticate as normally.
My problem is that users can not authenticate via AD-SSO functionality.
The AD-SSO service is up and running, but when a user tries to login into the domain (with the AD credentials), the attempt is unsuccessful and the user gets the NAC agent. For testing purposes, I have allowed data traffic from untrusted side (unauthenticated roll) to the DC domain to any port.
Does any body can help me to find which my problem is?
I have gotten the logs from the command “more /perfigo/access/tomcat/logs/nac_server.log”. I can not see any traffic to port 8910 (but there is traffic to port 8905). Besides, if someone knows where can I find documentation which helps to interpret the logs, I will thanks to share it with me.
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...