- Forums
- Knowledge Base
- Customer Service
- FortiGate
- FortiClient
- FortiAP
- FortiAnalyzer
- FortiADC
- FortiAuthenticator
- FortiBridge
- FortiCache
- FortiCarrier
- FortiCASB
- FortiConnect
- FortiConverter
- FortiCNP
- FortiDAST
- FortiDDoS
- FortiDB
- FortiDNS
- FortiDeceptor
- FortiDevSec
- FortiDirector
- FortiEDR
- FortiExtender
- FortiGate Cloud
- FortiGuard
- FortiHypervisor
- FortiInsight
- FortiIsolator
- FortiMail
- FortiManager
- FortiMonitor
- FortiNAC
- FortiNAC-F
- FortiNDR (on-premise)
- FortiNDRCloud
- FortiPAM
- FortiPortal
- FortiProxy
- FortiRecon
- FortiRecorder
- FortiSandbox
- FortiSASE
- FortiScan
- FortiSIEM
- FortiSOAR
- FortiSwitch
- FortiTester
- FortiToken
- FortiVoice
- FortiWAN
- FortiWeb
- Wireless Controller
- RMA Information and Announcements
- FortiCloud Products
- ZTNA
- 4D Documents
- Customer Service
- Community Groups
- Blogs
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
- Fortinet Community
- Forums
- Support Forum
- SSL_Login_Unknown_Username
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
SSL_Login_Unknown_Username
Hey all,
I'm taking over the administration of a Fortigate 100D from a meth user (no joking) and the user's are complaining that they can't get logged into the VPN.
I created a new local user and it was able to log in, however, I suddenly cannot log into the SSL VPN with my local admin account.
I removed the account from the VPN Group and re-added it, but that didn't help. The user told me that when this has happened in the past, the old admin would reboot the firewall.
I'd like to fix the root issue though. The user and i are getting the exact same error upon login.
On the client side we get "Permission Denied -455"
In the logs I see Action: ssl-login-fail
Reason: sslvpn_login_unknown_user
I've found troubleshooting tips online but they all are for LDAP issues, not local user issues.
I did test the connection to the LDAP server and came back successful.
The Firmware of the firewall is v5.4.4,build1117 (GA).
Thank you for your assistance!
EDIT: More infos
Log Debugging:
4/26/2017 5:10:28 PM Notice VPN id=96573 user=* local logged in user* msg="VPN before logon was disabled" vpntype=ipsec 4/26/2017 5:10:28 PM Notice ESNAC id=96951 user=* local logged in user* msg="Endpoint control policy synchronization was enabled" 4/26/2017 5:10:28 PM Notice Console id=96880 user=* local logged in user* msg="User disabled WAN Acceleration" 4/26/2017 5:10:28 PM Warning SSOMA id=96982 user=* local logged in user* msg="Single Sign-On Mobility Agent was disabled" 4/26/2017 5:10:28 PM Warning Console id=96840 user=*local logged in user* msg="Fortiproxy is disabled" 4/26/2017 5:10:32 PM Debug Scheduler GUI change event 4/26/2017 5:10:32 PM Debug Update Update task is called with dwSession=-1 4/26/2017 5:10:32 PM Debug Update forticlient.fortinet.net 4/26/2017 5:10:32 PM Debug Update start_update_thread() called 4/26/2017 5:10:32 PM Debug Update Impersonated=0 4/26/2017 5:10:32 PM Debug Update update started... 4/26/2017 5:10:32 PM Debug Update update process sending request: 00000000FSCI00000000000000000000 4/26/2017 5:10:32 PM Debug Update update process sending request: 00000000FDNI00000000000000000000 4/26/2017 5:10:32 PM Debug Update update process sending request: 01000000FECT00000000000000000000 4/26/2017 5:10:32 PM Debug Update update process sending request: 05004000FVEN00800000009999999999 4/26/2017 5:10:32 PM Debug Update update process sending request: 05004000FCBN00000000009999999999 4/26/2017 5:10:34 PM Debug Update scheduler called us 4/26/2017 5:10:34 PM Debug Scheduler GUI change event 4/26/2017 5:10:36 PM Debug Update scheduler called us 4/26/2017 5:10:36 PM Debug Scheduler handle_processtermination() called 4/26/2017 5:10:36 PM Debug Scheduler child process terminates normally 4/26/2017 5:10:36 PM Debug ESNAC dwMiniSecondaryKATout = 20, dwSecondaryKATout = 1800 4/26/2017 5:10:36 PM Debug ESNAC min = 20 4/26/2017 5:10:37 PM Debug ESNAC dwSilentReg false 4/26/2017 5:10:37 PM Debug ESNAC bFirstKA true 4/26/2017 5:10:37 PM Debug ESNAC Start searching for FGT 4/26/2017 5:10:37 PM Debug ESNAC Searching Default GW 4/26/2017 5:10:38 PM Debug ESNAC Timeout in select in SocketConnect 4/26/2017 5:10:38 PM Debug ESNAC Socket connect failed 4/26/2017 5:10:38 PM Debug ESNAC *client IP address*:8013, Secondary - 0 4/26/2017 5:10:38 PM Debug ESNAC CKeepAlive::SetState 4/26/2017 5:10:38 PM Debug ESNAC Offline 4/26/2017 5:10:38 PM Debug ESNAC m_dwAutoconnectWhenOffnet false 4/26/2017 5:10:38 PM Debug ESNAC End searching for FGT 4/26/2017 5:10:41 PM Debug Update updatetask get virus info file failed 4/26/2017 5:10:41 PM Debug Update update process received object(1 of 3): FCPR 4/26/2017 5:10:41 PM Debug Update update process received object(2 of 3): FDNI 4/26/2017 5:10:41 PM Debug Update update process received object(3 of 3): FECT 4/26/2017 5:10:41 PM Debug Update update done 4/26/2017 5:10:41 PM Debug Scheduler FortiTrayApp : Received WM_USER_UPDATE_SUCCESS message, lParam=0x1 4/26/2017 5:10:41 PM Debug Update update thread exit 4/26/2017 5:10:41 PM Debug Update No update is available. 4/26/2017 5:10:41 PM Debug Scheduler GUI change event 4/26/2017 5:10:44 PM Debug Scheduler handle_processtermination() called 4/26/2017 5:10:44 PM Debug Scheduler child process terminates normally 4/26/2017 5:10:45 PM Debug VPN FortiSslvpn: SSL VPN Tunnel is Disconnected ********* 4/26/2017 5:10:45 PM Debug VPN FortiSslvpn: Client is exited (1) 4/26/2017 5:10:45 PM Debug VPN FortiSslvpn: Init:ConnectNamedPipe(): Wait(hEventOverLapped) OK. 4/26/2017 5:10:45 PM Debug VPN FortiSslvpn: before ConnectNamedPipe 4/26/2017 5:10:45 PM Debug VPN FortiSslvpn: Init:ConnectNamedPipe(): rc=0, err=997 4/26/2017 5:10:45 PM Debug VPN FortiSslvpn: _ReceiveMessage: (0000040C) 4/26/2017 5:10:46 PM Error VPN id=96603 msg="SSLVPN tunnel connection failed (Error=-455)." remotegw=*Remote GW IP* vpnstate=connected vpntunnel=*vpnname* vpntype=ssl vpnuser=*username* 4/26/2017 5:10:56 PM Debug ESNAC dwMiniSecondaryKATout = 20, dwSecondaryKATout = 1800 4/26/2017 5:10:56 PM Debug ESNAC min = 20 4/26/2017 5:10:56 PM Debug ESNAC dwSilentReg false 4/26/2017 5:10:56 PM Debug ESNAC bFirstKA true 4/26/2017 5:10:56 PM Debug ESNAC Start searching for FGT 4/26/2017 5:10:56 PM Debug ESNAC Searching Default GW 4/26/2017 5:10:58 PM Debug ESNAC Timeout in select in SocketConnect 4/26/2017 5:10:58 PM Debug ESNAC Socket connect failed 4/26/2017 5:10:58 PM Debug ESNAC *local client ip*:8013, Secondary - 0 4/26/2017 5:10:58 PM Debug ESNAC CKeepAlive::SetState 4/26/2017 5:10:58 PM Debug ESNAC Offline 4/26/2017 5:10:58 PM Debug ESNAC m_dwAutoconnectWhenOffnet false 4/26/2017 5:10:58 PM Debug ESNAC End searching for FGT
Labels:
- Labels:
-
5.4
0 REPLIES 0
Labels
-
FortiGate
6,537 -
FortiClient
1,304 -
5.2
801 -
5.4
639 -
FortiManager
563 -
6.0
416 -
FortiAnalyzer
414 -
5.6
362 -
FortiSwitch
333 -
FortiAP
333 -
FortiClient EMS
263 -
6.2
251 -
FortiMail
242 -
FortiAuthenticator v5.5
234 -
5.0
196 -
FortiWeb
150 -
6.4
128 -
FortiNAC
106 -
FortiGuard
102 -
FortiSIEM
88 -
FortiGateCloud
87 -
FortiCloud Products
84 -
IPsec
73 -
Customer Service
70 -
FortiToken
69 -
4.0MR3
64 -
SSL-VPN
60 -
Wireless Controller
58 -
FortiProxy
44 -
FortiADC
42 -
Fortivoice
41 -
FortiEDR
39 -
FortiGate v5.4
34 -
FortiDNS
34 -
FortiExtender
31 -
FortiSandbox
31 -
FortiSwitch v6.4
28 -
SD-WAN
24 -
Firewall policy
23 -
FortiConnect
23 -
FortiWAN
22 -
FortiConverter
21 -
VLAN
20 -
High Availability
20 -
FortiPortal
18 -
ZTNA
16 -
FortiSwitch v6.2
16 -
FortiGate v5.2
16 -
FortiMonitor
14 -
Certificate
14 -
DNS
13 -
FortiDDoS
13 -
SAML
12 -
BGP
12 -
Routing
12 -
FortiAuthenticator
12 -
FortiCASB
12 -
Interface
11 -
Logging
11 -
FortiGate v5.0
10 -
LDAP
10 -
FortiRecorder
10 -
VDOM
10 -
FortiWeb v5.0
9 -
FortiManager v5.0
9 -
Virtual IP
9 -
NAT
9 -
4.0MR2
9 -
RADIUS
8 -
Traffic shaping
8 -
SSID
7 -
RMA Information and Announcements
7 -
FortiSOAR
7 -
fortilink
7 -
FortiAnalyzer v5.0
7 -
FortiGate v4.0 MR3
7 -
Admin
7 -
4.0
7 -
SSL SSH inspection
6 -
Security profile
6 -
Authentication
6 -
Fortigate Cloud
6 -
IP address management - IPAM
6 -
Traffic shaping policy
5 -
FortiBridge
5 -
SNMP
5 -
SSO
5 -
Application control
5 -
FortiManager v4.0
5 -
Static route
5 -
FortiDirector
4 -
WAN optimization
4 -
Web application firewall profile
4 -
DNS Filter
4 -
FortiTester
4 -
FortiCarrier
4 -
FortiCache
4 -
OSPF
4 -
3.6
4 -
FortiScan
4 -
Proxy policy
4 -
IPS signature
3 -
packet capture
3 -
FortiToken Cloud
3 -
FortiAP profile
3 -
Automation
3 -
Intrusion prevention
3 -
DoS policy
3 -
Port policy
3 -
FortiDB
3 -
FortiDeceptor
2 -
FortiInsight
2 -
NAC policy
2 -
Antivirus profile
2 -
VoIP profile
2 -
Traffic shaping profile
2 -
Web profile
2 -
FortiAI
2 -
FortiHypervisor
2 -
Netflow
2 -
Fortinet Engage Partner Program
2 -
trunk
2 -
Schedule
1 -
4.0MR1
1 -
SDN connector
1 -
Users
1 -
Subscription Renewal Policy
1 -
FortiCWP
1 -
FortiNDR
1 -
FortiPAM
1 -
Web rating
1 -
Application signature
1 -
Authentication rule and scheme
1 -
Multicast routing
1 -
FortiManager-VM
1 -
Zone
1 -
Internet Service Database
1 -
System settings
1 -
Explicit proxy
1 -
TACACS
1
Broad. Integrated. Automated.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Security Research
Company
News & Articles
Copyright 2024 Fortinet, Inc. All Rights Reserved.