Dimension and AuthPoint
Has anyone gotten AuthPoint to work to provide MFA with Dimension? I'm trying to set it up using Radius and am not getting anywhere. Tried through the gateway, through NPS, etc.. Request never gets to NPS as far as I can tell. Anything I do results in the following error, which seems like AuthPoint thinks the request is not authorized at the policy level? The policy is set to All Groups as a test etc.
Date/Time
2022-03-24 09:59:49
User
<user's email address>
IP Address
usa.cloud.watchguard.com
Source
AUTH
Category
RADIUS
Sub-Category
LDAP
Action
UNAUTHORIZED
Target
Dimension
Details
Reason: MFA did not authorize.
Error: 201.005.001 - The authentication attempt is not authorized.
Request Id: b062b803-0078-4d22-86fd-05b64ba01d7a
Policy Used: WG Dimension
Origin Location: not available
Comments
Hi,
Please make sure there's an access policy and resource for Dimension. Dimension just uses buck standard RADIUS, so as long as the AuthPoint GW is aware of it we should get some type of response.
If you get stuck, I'd suggest opening a support case so we can take a look at your configuration and assist.
-James Carson
WatchGuard Customer Support
I had the same problem. After contacting WG Support and escalation I got following link witch solved it for my situation:
Azure AD users get an “MFA Did Not Authorize” error message when they log in
https://techsearch.watchguard.com/KB?type=Article&SFDCID=kA16S000000byYrSAI&lang=en_US