Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
772
Views
0
Helpful
2
Replies

(self-resolved) WSA - NTLM realm passes tests but isn't authenticating users

rpatty
Level 1
Level 1

‎03-22-2017 12:02 PM

Nevermind, problem solved itself. Maybe there was some delay while communication started working?

----

We just swapped out an older S370 for an S390, using the config file to duplicate settings. On the old WSA, we had an NTLM authentication realm that authenticated users.

After today's cutover, users are no longer being authenticated. I've been in the Authentication Realm settings, and everything looks the same as it was before. We've even run the test, and that comes back clear. But all users show up in the logs as just IP addresses, never with a user name.

Labels:
0 Helpful
2 Replies 2

Ken Stieers
VIP
VIP

‎03-22-2017 12:12 PM

You have to rejoin the WSA to the domain.

Just like bringing a windows box with the same name and config onto the domain.... the trust relationship isn't there.

Go to Network/Authentication.  Click on the realm name you're using for NTLM.  On the page that comes up, click on the Join Domain button and give it AD credentials that have rights to modify the machine account (eg. DA, or other creds you may have delegated those rights to...)

0 Helpful

rpatty
Level 1
Level 1
In response to Ken Stieers

‎03-22-2017 12:20 PM

Sorry, forgot to mention, we did rejoin it to the domain. Since it was the same system name, we deleted the old object in the domain and then rejoined, which created a new object. Thank you for the suggestion, though.

0 Helpful
Customers Also Viewed These Support Documents