Buy or Renew
Buy or Renew
NOTICE: The community will be in READ-ONLY Sept. 6 – 9 to add Umbrella release notes and announcements. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
468
Views
0
Helpful
1
Replies

Finesse authentication against awdb

Rima
Level 1
Level 1

‎10-16-2022 06:08 AM

Hello Team,

Last week we have faced an issue. After performing an initialize local database , agents were unable to authenticate to finesse.

We disabled the NTLMv2 on the AWDB but the issue persists. the AD team activated  NTL on the active directory and the issue resolved. The AD Team has disabled NTLM on Active directory 7 days before the happening of the issue.

We would like to figure out the root cause ?

IS the initialize local database is the  action that has  triggered this issue asthe issue has happened 7 days after performing the disablement of NTLM on AD?

what type of data are copied by the initialize local database that are related t the AD and type of authentication?

I would be grateful if anyone could explain the process of finesse authentication against AWDB using a domain user  ?

PS: UCCE v 10.5

Thank you for your help and support

Labels:
0 Helpful
1 Reply 1

Jonathan Schulenberg
Hall of Fame
Hall of Fame

‎10-28-2022 03:27 AM - edited ‎10-28-2022 03:31 AM

Finesse doesn’t touch NTLM directly. It’s either expecting a user to provide credentials directly on the login page or using SAML SSO. Whatever happens between the browser and the IdP (creds, Kerberos, NTLM, X.509 cert, MFA, etc) is completely independent of Finesse; all it wants is the SAML response from the user’s browser when it’s finished. (The IdP and Finesse never communicate directly. The browser is redirected back and forth between them). Your IAM folks need to help troubleshoot this.

 

 

 

0 Helpful
Customers Also Viewed These Support Documents