Skip to main content
Salas
Salas
New Member
March 12, 2020
Question

SSL VPN with Fortiauthenticator MFA and AD authentication

  • March 12, 2020
  • 2 replies
  • 3353 views

Is it possible to configure Fortigate to use Fortiauthenticator with MFA and AD authentication, with NTLM v1 disabled on DC's ?

With ntlm v1 enabled everything works fine, but with v1 disabled, authentication fails with error :

Windows AD user authentication(mschap) with no token failed: AD auth error: Logon failure (0xc000006d)

Login to fortiauthenticator works fine, with AD account, but when trying to login using vpn client, it fails.

 

 

    2 replies

    Unified
    Unified
    New Member
    September 12, 2024

    Sorry to bring up an old thread, but did you ever fix this?

    Salas
    SalasAuthor
    New Member
    January 25, 2025

    Yes, I had to AD join fortiauthenticator.

    Remote Auth. Servers, Ldap, Windows Active Directory Domain Authentication

    But it's not working with 6.6.2 fortiauthenticator version.

    FortiAuthenticator v6.6 and RADIUS Authen... - Fortinet Community

     

    Terms & ConditionsAccessibility statement