You are viewing limited content. For full access, please sign in.

Question

Question

User is not able to log into Repository over VPN connection

Laserfiche
Updated April 6, 2017
asked on June 17, 2016 Show version history

Hello,

 

I currently am experiencing an issue where a user who is using a VPN is not able to log into their repository. They only receive the error message " Invalid User Name and Password". Their VPN is not set up to ping so testing to see if the computer can ping the LF server while on the network is not a valid test. They were able to determine through logs that the client is listening over port 80. Is there any insight as to why even though the machine looks to be on the network the user is not able to log into the repository?

 

Thanks!

0 0

Replies

replied on June 17, 2016

Are they using Windows Authentication? Maybe they are logged into their machine with an account that does not have login access to Laserfiche. If so, try unchecking the 'use windows authentication' checkbox and manually specify the windows username/password in the login dialog.

1 0
View 9 previous replies
replied on June 20, 2016

Hi Robert,

The user has attempted logging in with both Windows Authentication and entering credentials manually to no avail.

 

Thanks!

0 0
replied on June 20, 2016

Their machine needs to be a member of the windows domain to use windows authentication. 

0 0
replied on June 20, 2016

Hi Robert,

The user's machine looks to be a member of the windows domain as they are able to log in with Windows Authentication when they are locally connected to their network and not over VPN. Is there something in the VPN configuration that may change the machine so that it no longer thinks it is a part of the Windows Domain?

 

Thanks

0 0
replied on June 20, 2016

I don't see how it would make a difference. You can verify that they are logged in to windows as the correct use by running whoami from the windows command prompt. Also, try clearing the kerberos tickets by running 'klist purge' before signing in to Laserfiche.

0 0
replied on June 20, 2016

HI Robert,

 

I will go ahead and look into that. Quick question, am I running the klist purge on the users machine in Command Prompt?

 

Thanks!

0 0
replied on June 20, 2016

Yes, on the problem machine when it is connected to the vpn.

0 0
replied on June 21, 2016

Hi Robert,

I have had the user run whoami while connected to VPN and it is the same result they get when connected directly to their network. I also had them run klist purge and it said "succesful" but still no luck in getting them logged into the LF client while on VPN.

 

Thanks!

0 0
replied on June 21, 2016

Are there specific ports that need to be open between the client and server or vice versa that maybe aren't open and is causing the issue?

 

Thanks!

0 0
replied on June 21, 2016

If they get an 'invalid username' error, that means the client is able to communicate with the LF server. At this point I would suggest opening a support case. I can't think of why it would fail like this, but if we get some trace logs it might reveal the cause.

0 0
replied on June 21, 2016

Hi Robert,

 

Thanks for the update, I am having them check to see if they still get the same problem when logged in as Admin on the machine. If I can't figure it out past that, I will open a support case.

 

Thanks!

0 0
replied on April 6, 2017

Please share your findings for a solution!

0 0
replied on April 6, 2017

We had a client with the same issue, turns out this may be an issue with Kerberos as repository users not tied to a Windows account can log in just fine.  Seems that the Windows accounts can't connect to AD.

0 0
You are not allowed to follow up in this post.

Sign in to reply to this post.

Details
Related Posts
Loading ...