Comments

  • @Bruce_Briggs thanks to pointing out the new feature in 12.10.4. I've just upgraded from 12.10.3 and setup the brute-force protection.
  • Hi @"james.carson", I would like to +1 this feature request. The workaround isn't foolproof. The available domain is easily accessible from the SSL VPN portal https://Firebox_IP/sslvpn_logon.shtml Currently, someone is brute-forcing with many valid usernames on the main domain and Authpoint domain. Users are AD-bound, and…
  • WG support found the issue. The Firebox DNS was pointing to an external DNS. Changing it for AD DNS fixes the LDAP Bind issue. * Add the local DNS server to the Firebox global DNS settings (Policy Manager > Network Configuration > DNS/WINS or web UI > Network > DNS/WINS). Please make it the first DNS server on the list.
  • Hi @"james.carson" The LDAP test success in the WebUI and nowhere in the doc it ask for a functional LDAP but I’ve double check my Active Directory integration and it works. https://www.watchguard.com/help/docs/help-center/en-US/Content/Integration-Guides/AuthPoint/firebox-ssl-vpn-radius_authpoint.html The logs I’ve put in…
  • Quick note for this thread: All SSL clients will be disconnected after entered the cli command.