Getting error after creating NTLM machine account

Are you able to "Renew Machine Password".. Access Policy ›› Access Profiles : NTLM : Machine Account

For client side NTLM auth debug logs, following db key should help:

tmsh sys modify db log.eca.level value debug

Hi kj07208, I have exactly the same problem here. And when I enabled debug I see the following:

Jan 20 16:27:56 chsrv035 debug nlad[6717]: 01620000:7: <0x56805b90> nlclnt[40d148d0a]: is now initializing.
Jan 20 16:27:56 chsrv035 debug nlad[6717]: 01620000:7: <0x56805b90> NLAD_TRACE: cli_full_connection(output_cli = 0x9392a68, my_name = "CHSRV035", dest_host = "chsrv113.ads.domain.com", port = 445, service = "IPC$", service_type = "IPC", user = "CHSRV035$", domain = "ADS")
Jan 20 16:27:56 chsrv035 debug nlad[6717]: 01620000:7: <0x56805b90> NLAD_TRACE: cli_full_connection(output_cli = 0x9392a68) = 0x0
Jan 20 16:27:56 chsrv035 debug nlad[6717]: 01620000:7: <0x56805b90> NLAD_TRACE: cli_rpc_pipe_open_ntlmssp(cli = 0x9392a68, domain = "ADS", username = "CHSRV035$", presult = 0x9390d20)
Jan 20 16:27:56 chsrv035 debug nlad[6717]: 01620000:7: <0x56805b90> NLAD_TRACE: cli_rpc_pipe_open_ntlmssp(cli = 0x9392a68, presult = 0x9390d20) = 0x0
Jan 20 16:27:56 chsrv035 debug nlad[6717]: 01620000:7: <0x56805b90> NLAD_TRACE: rpccli_netlogon_setup_creds(cli(pipe) = 0x9390d20, server_name = "chsrv113.ads.domain.com", domain = "ADS", clnt_name = "CHSRV035", machine_account = "CHSRV035", neg_flags_inout = 0x600FFFFF)
Jan 20 16:27:56 chsrv035 debug nlad[6717]: 01620000:7: <0x56805b90> NLAD_TRACE: rpccli_netlogon_setup_creds(cli(pipe) = 0x9390d20) = 0x0
Jan 20 16:27:56 chsrv035 debug nlad[6717]: 01620000:7: <0x56805b90> NLAD_TRACE: cli_rpc_pipe_open_schannel_with_key(cli = 0x9392a68, domain = "ADS", pdc.mach_acct = "CHSRV035$", pdc.remote_machine = "\chsrv113.ads.domain.com", pdc.domain = "ADS", presult = (nil))
Jan 20 16:27:56 chsrv035 debug nlad[6717]: 01620000:7: <0x56805b90> NLAD_TRACE: cli_rpc_pipe_open_schannel_with_key(cli = 0x9392a68, presult = (nil)) = 0xC00000CA
Jan 20 16:27:56 chsrv035 err nlad[6717]: 01620000:3: <0x56805b90> nlclnt[40d148d0a] init: error [0xc00000ca,NT_STATUS_NETWORK_ACCESS_DENIED] setting up secure pipe

I don't know how to fix that. What I will do is delete the NTLM Machine Object in AD and recreate it again. If it is not working, I will open a case at F5.

I just tested it in another environment with standard AD install (No changes in Tree). I have exactly the same problem here. Is think this feature is not working in general. I will open a case and post the answer here when I have news...

Hi Anyone have an update on this issue?

Hi all, According to F5 this problem will be fixed in the upcoming v12.

May be can try restarting nlad.

There is an open bug when Netbios name doesn't match AD FQDN. Otherwise it should work.

I resetart nlad, no luck.

The issue is that I am being tasked to configure the F5 to replace the RDP Gateway Servers. I am following the following, http://www.f5.com/pdf/deployment-guides/microsoft-remote-desktop-gateway-dg-rc1.pdf

It is not working and I believe it has to do with the device not able to connect properly to AD.

have you tried enabling debug? What does the log say?

What is the NetBios name for the domain?

What is the NetBios name for the domain?