12-13-2011 08:33 PM
Running VIA on a 3600 with version 220.127.116.11.
Windows VIA clients (32 and 64 bit) both connect fine, as does the new iPad client, but I'm missing something, as Mac version isn't working.
Controller log shows Auth failure, but the LDAP server isn't even getting the request ( as per the LDAP server logs)
Dec 13 15:29:46 l2tp: <105003> <ERRS> |l2tp| PPP/VPN Authentication failed fairlie 18.104.22.168 PAP.
Please check authentication server radius/ldap/tacacs logs.
I have it set to fail to the internal DB and that does work.. so what am I missing?
( I saw in the other thread that there was a difference bt. Mac and Windows configs on the controller, but didn't want to jack that thread)
Solved! Go to Solution.
12-13-2011 11:43 PM
The configs on your firewall is different because the mac requires more ports inbound to your network:
UDP— 500, 1701, and 4500
IP protocol— 50
Aruba Customer Engineering
Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base
12-14-2011 06:20 AM
Thanks for the quick reply.
Are you referring to firewall rules on the controller itself, or our WAN firewall ( because currently I have wide open access to the controller from outside on the WAN firewall ( not blocking anything)
12-15-2011 04:32 AM
The VIA client on Mac OS authenticates against the server configured under the 'VPN authentication profile', which is different from the Windows/iOS clients that authenticate against the server under 'VIA authentication profile'.
Therefore you would have to provision your LDAP server under VPN Authentication Profile->default->Server Group.
Hope this helps.
05-17-2012 08:32 AM
i have the vpn authentication profile configured to reflect the same server group as the VIA authentication profile and I am still having issues with MAC OS devices connecting. here is the error message on the controller: <l2tp 105003> <ERRS> |l2tp| PPP/VPN Authentication failed (user name) 22.214.171.124 MSCHAPv2.