| AD Users Cannot login [message #113728] |
Sat, 24 May 2014 14:07  |
farshid
Messages: 2
Registered: May 2014
|
|
|
|
|
Hi.I have installed Kerio Control 8.3 and I'm trying to enable Active Directory user authentication. It seems to AD connection is OK and all user added to Kerio successfully but when users try to login, " Incorrect username or password" appears on screen. When I check the logs section, there is a log message that says password is incorrect. I checked the user's password in AD 2008 and it was correct.
|
|
|
|
|
|
|
|
| Re: AD Users Cannot login [message #113765 is a reply to message #113728] |
Tue, 27 May 2014 16:03  |
farshid
Messages: 2
Registered: May 2014
|
|
|
|
|
I found the problem. It was because of time difference in servers despite of joining kerio machine to domain. It was supposed to sync its time with dc but it wasn't. Anyway problem get solved and everything works just fine.
|
|
|
|
|
|
| Re: AD Users Cannot login [message #120035 is a reply to message #120033] |
Mon, 16 March 2015 12:25 |
 |
vtripp
Messages: 616
Registered: September 2009
Location: Cambridge
|
|
|
|
Hi Guys,
We had a couple of customers report AD auth breaking to control. This appears to have been caused by a Microsoft update:
"Microsoft KB3002657 Update for Windows 2003 installed March 11 2015.
This KB3002657 Update breaks NTLMSSP-authentification."
However this update did go to other Windows Server versions so check which Microsoft updates were installed recently.
All the best,
Vicky
|
|
|
|
| Re: AD Users Cannot login [message #120038 is a reply to message #120035] |
Mon, 16 March 2015 13:17 |
aidin
Messages: 3
Registered: March 2015
|
|
|
|
Thanks for the prompt reply
Mine is a Windows Server 2012 R2 environment which is instantly updated. I have recently installed Kerio Connect for evaluation and had the same issue from begining.
But, it is making me more worried if updating Windows may result in this type of severe issues!!
I am seeing the following error in Kerio Security log:
HTTP/WebMail: Authentication failed for user email<_at_>domain.com. Attempt from IP address xx.xx.xx.xx. External authentication service rejected authentication due to invalid password or authentication restriction.
|
|
|
|
|
|
| Re: AD Users Cannot login [message #120049 is a reply to message #120039] |
Mon, 16 March 2015 15:36 |
Kerio/GFI Brian
Messages: 852
Registered: March 2004
Location: California
|
|
|
|
Thanks Aidin for confirming that you found a resolution. Regarding your point on the documentation, I also had a difficult time locating this information. I expect that it should be covered in KB 1130. I'll notify our doc team to make sure that it gets included. You'll notice in this forum post http://forums.kerio.com/m/119063/#msg_119063 that the forum user had the same problem, so it's not uncommon.
Brian Carmichael
Instructional Content Architect
|
|
|
|
Members
Search
Help
Register
Login
Home
