VPN SSL Error:Access Denied.

Forum|Forum|8 years ago
February 1, 2018
1 reply
28111 views

I configured FG100E to get access using SSL and LDAP. Everything seems Ok. I can reach the LDAP Server, I can see organizational units and even create users (LDAP and RADIUS also) but when I tried to get access from the web portal it shows "Error:Permission Denied". The Portal works properly with local users which are created in the FG. But not for those who are created with the LDAP Process. Someone who knows what is missed?

By the way I am using Windows 2016 Std and FGE100 v. 5.4

Thanks!

Toshi_Esumi

SuperUser

Do you have a proper policy from ssl.root to internal destination interface that has a user group specified? That user group needs to have the LDAP server as a member. If you sniff packets with "any" interface specifying the LDAP server IP as host, you wouldn't see any auth request packets coming out of FG100E when you hit with SSL VPN attempt if the policy is not configured properly.

adeluna2005Author

New Member

Yes I have the Policy from ssl.root to our internal interface and also I added the group with the Ldap users. In the same Group I included local users and those are working properly. So that means that the Policy is working Properly ...and also the SSL configuration.

Toshi_Esumi

SuperUser

Have you sniffed the auth request came out toward the server when you attempt a connection?

If you think everything is correctly configured, next action I would take is open a TT at TAC.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded