Forum Discussion
AltostratusSingle User Unable to Connect to VPN over F5 APM
Hi Everyone,
We have a F5 APM for VPN using Radius servers for authenticating the users. We See that one user is unable to access VPN and when checked logs we see this
RADIUS module: authentication with 'Username' failed: Access-Reject packet from host 127.7.0.3:1812 (3)
Can someone please clarify if this is being rejected on APM or on Radius Server
4 Replies
HarshaNKRadius Team are not seeing any entries for this auth session
- Injeyan_Kostas
Nacreous
Hello HarshaNK
Access-Reject should come from Radius
You see loopback addrees cause i guess you have a Radius Server Pool and not a direct Radius Server.
You should therefore see logs on Radius side.
You could also capture traffic to be sure that request reached Radius Server
Moreover, as it happens for a specific user, check if there are non-ASCII characters on username or password - HarshaNK
Hi Injeyan_Kostas
Thanks for your response , Got the clarification for the loopback address in log.
We have verified with the Radius Server team and they were not able to see logs for the attempt.
The Password is working for other applications , only for VPN the user is facing issues.
We will check by adding a packet capture and validate. - Aswin_mk
MVP
Hi,
Usually APM cannot generate an "Access-Reject" by itself — it only reports what RADIUS sends. We need to verify the logs in radius and if there no logs you can just check and confirm F5 errors
/var/log/apm
/var/log/ltmBR
Aswin
