cancel
Showing results for 
Search instead for 
Did you mean: 

DoFirepassLogin (0xfffff82e) EXCEPTION

gabridip_sin
Nimbostratus
Nimbostratus

I'm configuring the f5 VPN on a server with Debian 10.

I have installed the cacert, and the f5 client.

 

I try to connect with both (they have the same effect):

f5fpc -s -t HOST -u USER -p PASS -d /usr/local/share/ca-certificates/ -x

or

f5fpc -s -t HOST -u USER -p PASS -d /usr/local/share/ca-certificates/ -x -n "NAME"

On standalone.log file I have this:

2021-04-01,10:52:02:042, 626,1306,standalone, 48, /UChannelChain.cpp, 55, , enter, 0x7: U_ENABLE_SOCKET_CHANNEL U_ENABLE_SSL_CHANNEL U_ENABLE_PROXY_CHANNEL 2021-04-01,10:52:02:042, 626,1306,standalone, 48,,,, USSLChannel::USSLChannel:RAND_status(1) 2021-04-01,10:52:02:042, 626,1306,standalone, 48, /LinuxEventHandler.cpp, 35, CLinuxEventHandler::HandleEvent(), enter, 22 2021-04-01,10:52:02:042, 626,1306,standalone, 48, /LinuxEventHandler.cpp, 68, CLinuxEventHandler::HandleEvent(), exit with, 0 2021-04-01,10:52:02:052, 626,1306,standalone, 48, /LinuxEventHandler.cpp, 35, CLinuxEventHandler::HandleEvent(), enter, 23 2021-04-01,10:52:02:052, 626,1306,standalone, 48, /LinuxEventHandler.cpp, 68, CLinuxEventHandler::HandleEvent(), exit with, 0 2021-04-01,10:52:02:052, 626,1306,standalone, 48, /USSLChannel.cpp, 261, , socket receive timeout set (seconds), 30 2021-04-01,10:52:02:052, 626,1306,standalone, 48,,,, USSLChannel::Open() - select return 1 2021-04-01,10:52:02:064, 626,1306,standalone, 48, /LinuxEventHandler.cpp, 35, CLinuxEventHandler::HandleEvent(), enter, 1 2021-04-01,10:52:02:064, 626,1306,standalone, 48, /LinuxEventHandler.cpp, 43, CLinuxEventHandler::HandleEvent(), EVENT_TYPE_SELECT_CLIENT_CERT 2021-04-01,10:52:02:064, 626,1306,standalone, 48, /LinuxEventHandler.cpp, 68, CLinuxEventHandler::HandleEvent(), exit with, 3 2021-04-01,10:52:02:064, 626,1306,standalone, 48, /LinuxEventHandler.cpp, 35, CLinuxEventHandler::HandleEvent(), enter, 1 2021-04-01,10:52:02:064, 626,1306,standalone, 48, /LinuxEventHandler.cpp, 43, CLinuxEventHandler::HandleEvent(), EVENT_TYPE_SELECT_CLIENT_CERT 2021-04-01,10:52:02:064, 626,1306,standalone, 48, /LinuxEventHandler.cpp, 68, CLinuxEventHandler::HandleEvent(), exit with, 3 2021-04-01,10:52:02:086, 626,1306,standalone, 48, /UHTTP.cpp, 113, UHTTP::makeRequest(), server HTTP code, 200 2021-04-01,10:52:02:086, 626,1306,standalone, 48, /UHTTP.cpp, 129, UHTTP::makeRequest(), bytes to read, 5183 2021-04-01,10:52:02:086, 626,1306,standalone, 48, /UFirepass.cpp, 678, UFirepass::doGetRequestWithoutRedirect, server returned HTTP code, return code, 200, 0 2021-04-01,10:52:02:086, 626,1306,standalone, 48, /UChannelChain.cpp, 34, , destroying channel #2. Stats (0) - Recv=13994 Send=1210 2021-04-01,10:52:02:086, 626,1306,standalone, 48, /UChannelChain.cpp, 34, , destroying channel #1. Stats (0) - Recv=8070 Send=941 2021-04-01,10:52:02:086, 626,1306,standalone, 1, /UFirepass.cpp, 1308, DoFirepassLogin, (0xfffff82e) EXCEPTION - logon failed 2021-04-01,10:52:02:086, 626,1306,standalone, 48, /UChannelChain.cpp, 34, , destroying channel #2. Stats (0) - Recv=2714 Send=2976 2021-04-01,10:52:02:086, 626,1306,standalone, 48, /UChannelChain.cpp, 34, , destroying channel #1. Stats (0) - Recv=2430 Send=1824 2021-04-01,10:52:02:086, 626,1306,standalone, 1, /UFirepass.cpp, 1317, , EXCEPTION caught: UFirepass::DoFirepassLogin - EXCEPTION 2021-04-01,10:52:02:086, 626,1306,standalone, 0,,,, Logon failed 2021-04-01,10:52:02:086, 626,1306,standalone, 48, , 723, DoLogin, Login attempt to server (xxxxxxxxxxxxxxxxxxxxxxxxx) failed - access denied. 2021-04-01,10:52:02:086, 626,1306,standalone, 1, , 758, CSessionHandler::session_thread_loop(), DoFirepassLogin() = -2002, Session status: 7.

 

I have made many attempts, the user and password are right (they work on a windows machine).

 

On the windows machine I have this config.f5c

 

<?xml version="1.0" encoding="UTF-8"?> <PROFILE VERSION="2.0"> <SERVERS TRUSTED="YES"> <SITEM>  <ADDRESS>HOST</ADDRESS>  <ALIAS>NAME</ALIAS>  <SAVEPASSWORDS>YES</SAVEPASSWORDS> </SITEM> </SERVERS> <SESSION LIMITED="YES">  <STAYCONNECTED>YES</STAYCONNECTED>  <RECONNECTIONS>5</RECONNECTIONS>  <SAVEONEXIT>YES</SAVEONEXIT>  <SAVEPASSWORDS>NO</SAVEPASSWORDS>  <REUSEWINLOGONCREDS>NO</REUSEWINLOGONCREDS>  <REUSEWINLOGONSESSION>NO</REUSEWINLOGONSESSION>  <PASSWORD_POLICY>   <MODE>DISK</MODE>   <TIMEOUT>240</TIMEOUT>  </PASSWORD_POLICY>  <UPDATE>   <MODE>YES</MODE>  </UPDATE> </SESSION> <LOCATIONS>  <CORPORATE>  </CORPORATE> </LOCATIONS> <UI>  <CUSTOMIZE>   <LANGUAGE>   </LANGUAGE>  </CUSTOMIZE> </UI> </PROFILE>

 

 

Any idea?

2 REPLIES 2

gabridip_sin
Nimbostratus
Nimbostratus

The version of the client is:

BIG-IP Edge Command Line Client version 7185.2021.0108.1

 

boneyard
MVP
MVP

do you have access on the server side logs? do they show something?