Forum Discussion
NimbostratusNTLM message on F5
Hi,
I am configuring NTLM authentication on the F5 following this guide: https://devcentral.f5.com/articles/configuring-apm-client-side-ntlm-authentication
I have admin rights to create the machine account on AD, and once created, I can renew the password with no errors.
But the F5 is reporting the following messages constantly on /var/log/apm:
May 10 10:31:58 err nlad[5376]: 01620000:3: <0x2b323ffd0700> nlclnt[31750020a] init: Error [0xc0000011,NT_STATUS_END_OF_FILE] connecting to DC [ip address]
Any idea Why?
Simon_BlakelyEmployee
Microsoft has released security bulletin MS17-010 announcing a recommended software security patch to fix multiple vulnerabilities in SMBv1. A procedure to disable SMBv1 is listed as a workaround. When this workaround is implemented, NTLM authentication in BIG-IP APM fails for RDP client gateway deployments, and Microsoft Exchange ActiveSync proxy deployments.
As a result of this issue, you may encounter one or more of the following symptoms:
Users are unable to authenticate when accessing RDP or Exchange services using the BIG-IP APM system. The BIG-IP APM system generates messages to the /var/log/apm file that appear similar to the following example: 01620000:3: <0x55abeb70> nlclnt[129010a0a] init: Error [0xc0000011,NT_STATUS_END_OF_FILE] connecting to DC 10.10.10.10