+ Post New Thread
Page 1 of 2 12 LastLast
Results 1 to 15 of 18
Windows 7 Thread, NTLM Authentication & Smoothwall in Technical; Hi, We've recently started to have an issue with various students not being able to access the internet and an ...
  1. #1
    jaminben's Avatar
    Join Date
    Oct 2012
    Location
    Norfolk
    Posts
    182
    Thank Post
    32
    Thanked 14 Times in 13 Posts
    Rep Power
    6

    NTLM Authentication & Smoothwall

    Hi,

    We've recently started to have an issue with various students not being able to access the internet and an NTLM authentication popup box displaying on screen. If the users enter their logon details the issue doesn't resolve itself... the only real way to get them up and running is to reset their username/password within AD. This only appears to be happening with Windows 7 clients and is totally random (3 students here, 5 students there etc).

    About a week ago we had a Smoothwall engineer access our system to carry out some much needed maintenance and apply an iOS 6 patch to allow BYOD to work correctly.

    Anyone have any similar issues or ideas about whats gone wrong?

    Thanks

  2. #2
    Tsonga's Avatar
    Join Date
    Oct 2012
    Location
    Dorset
    Posts
    151
    Thank Post
    8
    Thanked 19 Times in 16 Posts
    Rep Power
    7
    Have to run the test to see if smoothwall is talking to the AD correctly? Ours messed up when the time was slightly out.

    Services -> Authentication -> Control

  3. Thanks to Tsonga from:

    jaminben (12th December 2012)

  4. #3
    jaminben's Avatar
    Join Date
    Oct 2012
    Location
    Norfolk
    Posts
    182
    Thank Post
    32
    Thanked 14 Times in 13 Posts
    Rep Power
    6
    Thanks for the quick reply.

    All checks passed ok.

  5. #4
    Tsonga's Avatar
    Join Date
    Oct 2012
    Location
    Dorset
    Posts
    151
    Thank Post
    8
    Thanked 19 Times in 16 Posts
    Rep Power
    7
    Is it locking the accounts in AD?

  6. #5
    DMcCoy's Avatar
    Join Date
    Oct 2005
    Location
    Isle of Wight
    Posts
    3,386
    Thank Post
    10
    Thanked 483 Times in 423 Posts
    Rep Power
    110
    Do the passwords for students expire or have password requirements to be changed? I've had issues where the AD passwords expire after the user has logged in, windows won't tell you, and the current kerberos ticket remains valid (so things like file sharing still work). Other services such as smoothwall will fail authentication due to the password expiring post logon.

  7. #6
    jaminben's Avatar
    Join Date
    Oct 2012
    Location
    Norfolk
    Posts
    182
    Thank Post
    32
    Thanked 14 Times in 13 Posts
    Rep Power
    6
    Yes its locking thier accounts... we've thought about their BYOD automatically connecting and locking them out during a failed attempt to connect but they swear blind they haven't got any phones etc... I've tried my own device to replicate a student automatically connecting but it doesn't give the NTLM message.

  8. #7
    jaminben's Avatar
    Join Date
    Oct 2012
    Location
    Norfolk
    Posts
    182
    Thank Post
    32
    Thanked 14 Times in 13 Posts
    Rep Power
    6
    Nope, passwords don't expire until Jan 2013 and nothing else has changed within the system.

  9. #8
    Tsonga's Avatar
    Join Date
    Oct 2012
    Location
    Dorset
    Posts
    151
    Thank Post
    8
    Thanked 19 Times in 16 Posts
    Rep Power
    7
    Quote Originally Posted by jaminben View Post
    Yes its locking thier accounts... we've thought about their BYOD automatically connecting and locking them out during a failed attempt to connect but they swear blind they haven't got any phones etc... I've tried my own device to replicate a student automatically connecting but it doesn't give the NTLM message.
    Auto-saved somewhere?

    I had a very similar issue where the old password was stored in their key-chains when they used Macs

  10. #9
    jaminben's Avatar
    Join Date
    Oct 2012
    Location
    Norfolk
    Posts
    182
    Thank Post
    32
    Thanked 14 Times in 13 Posts
    Rep Power
    6
    Our macs dont currently talk to the AD system (thats next summers job).

  11. #10
    Tsonga's Avatar
    Join Date
    Oct 2012
    Location
    Dorset
    Posts
    151
    Thank Post
    8
    Thanked 19 Times in 16 Posts
    Rep Power
    7
    iPods?

    The only reason I can think of the accounts being locked it based on the account lockout policy in group policy. Typically this is 5 login attempts in 5 minutes so something has to be hammering LDAP incorrectly to lock them.

  12. #11
    jaminben's Avatar
    Join Date
    Oct 2012
    Location
    Norfolk
    Posts
    182
    Thank Post
    32
    Thanked 14 Times in 13 Posts
    Rep Power
    6
    We thought the same thing but have been unable to replicate it using our own devices.

  13. #12
    jaminben's Avatar
    Join Date
    Oct 2012
    Location
    Norfolk
    Posts
    182
    Thank Post
    32
    Thanked 14 Times in 13 Posts
    Rep Power
    6
    The only thing that looks odd is:

    Warning: System Load Average is 4.41 4.69 4.62

    Which happened at around the same time some students had a problem.

    Found this thread about the warning and trying to work out what our figures mean.

  14. #13
    Tsonga's Avatar
    Join Date
    Oct 2012
    Location
    Dorset
    Posts
    151
    Thank Post
    8
    Thanked 19 Times in 16 Posts
    Rep Power
    7
    Then I am at a loss.

    You can putty into smoothwall and have a look at its running processes...

  15. #14
    Mako's Avatar
    Join Date
    Apr 2009
    Location
    North Yorkshire
    Posts
    431
    Thank Post
    50
    Thanked 107 Times in 81 Posts
    Rep Power
    71
    Interesting that you should post this thread yesterday, as we've been having an almost identical issue here with Smoothwall. It's random, it locks them out, only on Win7, and only just started happening last week (with slowly increasing frequency). Resetting AD user/pass works. Unable to replicate issue.

    It's only with students, have not had a single member of staff have a problem.

    On the verge of logging a call with our LA Smoothwall support team.

  16. #15

    Join Date
    Oct 2007
    Location
    Northamptonshire
    Posts
    307
    Thank Post
    20
    Thanked 79 Times in 67 Posts
    Rep Power
    43
    It may be worth looking at disabling the below setting in the Web Proxy settings (Advanced) in case that helps. I've not had to use it before but it sounds like it might be the issue you're having.

    Interrupted NTLM connections are caused by non-standard Web browser behavior. Disable this option if restrictive Active Directory account lockout policies are in operation.

SHARE:
+ Post New Thread
Page 1 of 2 12 LastLast

Similar Threads

  1. Moodle & NTLM Authentication
    By alan-d in forum Virtual Learning Platforms
    Replies: 12
    Last Post: 15th December 2009, 02:19 PM
  2. Smoothwall School Guardian NTLM Authentication woes
    By karlr in forum Internet Related/Filtering/Firewall
    Replies: 4
    Last Post: 15th September 2009, 01:04 PM
  3. Moodle - NTLM Authentication Clarification
    By FN-GM in forum Virtual Learning Platforms
    Replies: 13
    Last Post: 28th July 2009, 03:11 PM
  4. Smoothwall - Mac's NTLM Authentication
    By linkazoid in forum Mac
    Replies: 7
    Last Post: 20th May 2009, 09:54 AM
  5. MRBS + NTLM Authentication
    By Frazer in forum *nix
    Replies: 13
    Last Post: 29th June 2006, 02:00 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •