Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

vpn concentrator not authenticating to active directory

hello,

I have vpn concentrator that is supposed to do authentication using an internal group with kerberos/active directory as authenticator.

When client try to connect it does not work and i get the following in the log:

01/19/2006 14:32:41.260 SEV=3 AUTH/5 RPT=10 196.29.168.2

Authentication rejected: Reason = Unspecified

handle = 22, server = 10.10.21.11, user = vpntest, domain = <not specified>

does this relate to realm. I have already put it as uppercase

regards

2 REPLIES
New Member

Re: vpn concentrator not authenticating to active directory

I would need you to check a couple of things on the Kerberos. Please check that the server is using one of the following encryption types: 3DES, DES, and RC4. Also, please get the logs on the Kerberos when you try to authenticate.

Also, if you have an NTP server, try changing the ntp server from a free public server to be the active directory server. I think this would help.

New Member

Re: vpn concentrator not authenticating to active directory

Thanks a lot, but i found that i should be unchecking the "strip realm" and put the domain name in upper case letters for the Active directory goups.

Thx again, it is working fine now

137
Views
0
Helpful
2
Replies
CreatePlease to create content