I've a M270 with SSL VPN using active directory for authentication.
One of my users keeps getting is password blocked because of failed login attempts.
On my DC I've the information the request is coming from the firebox ip.
Is there a way to see where are the auth requests coming in the firebox log? How can I access those logs?
I also removed the user from the AD VPN Group, but it keeps getting blocked.
Can anyone help?