I recently configured captive portal on my network using my AD as the autheticator server.
My users can login on their laptops but if they try to do so on their respective phones, they get this error message "User.... failed to login to Firewall through AD authentication mechanism from... because of max login limit reached".
I have changed the simutenous login but still thesame thing.
I created a 'test' user and was able to login on my laptop and phone succesfully.
Hello Idris Sanni1 ,Thank you for reaching out to the community, can you please check simultaneous login at two places:1.) Authentications > Services > Global settings2.) Authentications > Users > select AD user > other settings And validate at both the places the option is set to unlimited ?
Thanks & Regards,_______________________________________________________________
Vivek Jagad | Technical Account Manager 3 | Cyber Security Evolved
Sophos Community | Product Documentation | Sophos Techvids | SMSIf a post solves your question please use the 'Verify Answer' button.
What I do not understand is a test user I created works fine but some users on AD gets this error message
Hey Idris Sanni1 ,On the CLI, select option 5. Device Management, then option 3. Advanced Shell.Enable the debug logs for the authentication - #service access_server:debug -ds nosyncTo check the live logs while authenticating the user - #tail -f /log/access_server.log | grep <AD username>
If I may ask, what effect does this have on the netowrk because I have disabled the captive portal at the moment.
Enabling the debug does not cause any network impact, until keeping the debug on for long, as it produces more no of log lines then it may result into filling up the disk space much faster !!