Announcement

Collapse
No announcement yet.

Wrong username or password

Collapse
X
Collapse
 
  • Page of 1
  • Filter
  • Time
  • Show
Clear All
new posts
Previous template Next
  • #1

    Wrong username or password

    I am using NxFilter with Active Directory. Users login via the site/block,login.jsp page. I have been using this setup for a number of years with no problems. However, recently some users get a 'Wrong username or password' error when they try to login to NXFilter. It does not happen to all users. There have been no recent changes to my network. The AD test in NXFilter returns 'Success! LDAP connection succeeded'.

    I have tried the following:
    Upgrade to NXFilter 4.6.3.5
    Changed NXFilter to point to another AD domain controller
    Changed the NXFilter AD User to the domain administrator
    Installed all updates on my servers and rebooted
    Reviewed my server event logs for any errors
    Reviewed the NXFilter logs for any errors

    I've run out of idea's at this stage.
    Tags: None
  • #2
    When you get 'Success! LDAP connection succeeded' with AD test, which account did you use? Admin or the username making your problem?

    When did you get that problem first time and what was the version?

    Comment

    • #3
      Did you see anything like this in /nxfilter/log/nxfilter.log file?

      Code:
      ERROR ([2022-10-14 20:54:01] - LdapAgent.conn, Tried to connect 192.168.0.55:389, uname = CN=East Man,CN=Users,DC=rainbowz,DC=local, error = javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C0903C5, comment: AcceptSecurityContext error, data 52e, v2580 ].
      If it's about password error, you get this kind of log.

      Comment

      • #4
        I created an AD account specifically for NXFilter to use. I have been using this account with NXFilter for years. I also tried using the administrator account.
        I'm not sure what the previous version of NXFilter was v4.6.3.3

        I found this is the NXFilter log:

        ERROR [10-13 17:00:34] - LdapAgent.conn, Tried to connect 172.16.1.4:389, uname = CN=Removed Name,OU=DPD,OU=Employees,OU=Site,OU=COS,OU=ICMUser s,DC=mydomain,DC=ie, error = javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C090436, comment: AcceptSecurityContext error, data 52e, v23f0 ].

        The users password is definitely correct.

        Comment

        • #5
          I just noticed: The OU=DPD for the user is wrong. This is an old OU from at least 12 months ago. When I moved the user back to their old OU, NXFilter authentication worked!

          Comment

          • #6
            OK. Good to hear that.

            Comment

            • #7
              Could be working if you deleted the user on NxFilter side and imported it again.

              Comment

              • #8
                I had previously deleted and reimported the user but this did not work. Is the OU imported as part of the AD sync? Is there somewhere I can view the imported OU?

                Comment

                • #9
                  We use LDAP login and use 'CN=Removed Name,OU=DPD,OU=Employees,OU=Site,OU=COS,OU=ICMUser s,DC=mydomain,DC=ie' as the actual username. So, we keep it in DB and if it's changed on AD side, you may need to reimport it. But if it didn't work, maybe another reason.

                  Comment

                  Previous template Next
                  Working...
                  X