TS Gateway authentication fails, but only from external sources
i have managed make progress on ts gateway implementation still not yet @ point can use externally. have published through isa server (managed going on single ip runs owa, lot of sites told me couldn't done, i'm quite pleased there) can't log on when try outside network.
on machine on network on ts gateway resides, can use gateway (even if uncheck 'bypass ts gateway local addresses') know config working. when try access remotely, no certificate errors, when type in correct domain\username or machinename\username , password, authentication box comes straight back. if examine security event log on ts gateway, each failed logon attempt see following entry in there twice:
account failed log on.
subject:
security id: null sid
account name: -
account domain: -
logon id: 0x0
logon type: 3
account logon failed:
security id: null sid
account name: administrator
account domain: domain.local
failure information:
failure reason: unknown user name or bad password.
status: 0xc000006d
sub status: 0xc000006a
process information:
caller process id: 0x0
caller process name: -
network information:
workstation name: ws0001
source network address: 123.223.123.223
source port: 63707
detailed authentication information:
logon process: ntlmssp
authentication package: ntlm
transited services: -
package name (ntlm only): -
key length: 0
event generated when logon request fails. generated on computer access attempted.
subject fields indicate account on local system requested logon. commonly service such server service, or local process such winlogon.exe or services.exe.
logon type field indicates kind of logon requested. common types 2 (interactive) , 3 (network).
process information fields indicate account , process on system requested logon.
network information fields indicate remote logon request originated. workstation name not available , may left blank in cases.
authentication information fields provide detailed information specific logon request.
- transited services indicate intermediate services have participated in logon request.
- package name indicates sub-protocol used among ntlm protocols.
- key length indicates length of generated session key. 0 if no session key requested.
password typed correct, , say, if use same credentials internally works fine, albeit rather pointlessly apart purpose of troubleshooting.
advice welcomed
thanks
richard
on machine on network on ts gateway resides, can use gateway (even if uncheck 'bypass ts gateway local addresses') know config working. when try access remotely, no certificate errors, when type in correct domain\username or machinename\username , password, authentication box comes straight back. if examine security event log on ts gateway, each failed logon attempt see following entry in there twice:
account failed log on.
subject:
security id: null sid
account name: -
account domain: -
logon id: 0x0
logon type: 3
account logon failed:
security id: null sid
account name: administrator
account domain: domain.local
failure information:
failure reason: unknown user name or bad password.
status: 0xc000006d
sub status: 0xc000006a
process information:
caller process id: 0x0
caller process name: -
network information:
workstation name: ws0001
source network address: 123.223.123.223
source port: 63707
detailed authentication information:
logon process: ntlmssp
authentication package: ntlm
transited services: -
package name (ntlm only): -
key length: 0
event generated when logon request fails. generated on computer access attempted.
subject fields indicate account on local system requested logon. commonly service such server service, or local process such winlogon.exe or services.exe.
logon type field indicates kind of logon requested. common types 2 (interactive) , 3 (network).
process information fields indicate account , process on system requested logon.
network information fields indicate remote logon request originated. workstation name not available , may left blank in cases.
authentication information fields provide detailed information specific logon request.
- transited services indicate intermediate services have participated in logon request.
- package name indicates sub-protocol used among ntlm protocols.
- key length indicates length of generated session key. 0 if no session key requested.
password typed correct, , say, if use same credentials internally works fine, albeit rather pointlessly apart purpose of troubleshooting.
advice welcomed
thanks
richard
1. authentication using on isa? otp?
2. client machine, can check if can launch http://<tsgatewaywebsitename>/rpc ? should prompt credentials , after authentication lead blank page.
3. there troubleshooting tips issues similar have reported on ts gateway step step guide @ http://technet.microsoft.com/en-us/library/cc731353(ws.10).aspx. please see if helps.
thanks
vikash
thanks, vikash
2. client machine, can check if can launch http://<tsgatewaywebsitename>/rpc ? should prompt credentials , after authentication lead blank page.
3. there troubleshooting tips issues similar have reported on ts gateway step step guide @ http://technet.microsoft.com/en-us/library/cc731353(ws.10).aspx. please see if helps.
thanks
vikash
thanks, vikash
Windows Server > Remote Desktop Services (Terminal Services)
Comments
Post a Comment