SOnicwall SSL-VPN and AD Log On To restrictions.

Leigh Kalbli
Leigh Kalbli used Ask the Experts™
on
After deploying Sonicwall SSL-VPN on a NSA 2400, an user thats been imported from Active Directory is unable to log in.  The problem has been isolated to the fact that in AD, the user has Log On To exclusions for PC's. After disabling this, the user is able to connect to SSL-VPN.  The question at hand is how can SSL-VPN be used along with the Log On To.  The user needs to be restricted via AD.
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
I presume you mean that you have not configured exclusions for computers that a user can logon to, but have actually configured a list of computers that the user can logon to from the "Log On To" button on the accounts tab of the user account.

When that is configured, logons for that user will only be accepted when it is from one of the listed computers, the SSL-VPN is not one of those computers, so the logon is denied.

It is a "feature" of using the "Log On To" list to restrict computers logons.

There are two options, use a different VPN authentication, or a different method of resticting logons.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial