[SOLVED] CiscoAnyConnect Cannot Login Error: Active Directory and GPOs?
– đź‘Ś
welcome,
I was trimming an ad where there are a few redundant folders and obscure labels. Some names don’t tell anyone what you’re doing. Needless to say, now users are unable to remotely connect to the network and receive the Cisco AnyConnect “Cannot Login” error. When I check for Group Policy Objects (GPOs) that I have not made any changes to, one of them shows a “Not Found” error.
Is there a way to go back to the previous version of the AP and manage the GP?
Tabasco
OP
frossmark
This person is a certified professional.
Verify your account to let your IT peers know you’re a professional. Aug 22, 2018 17:28 UTC
I was trimming an ad where there are a few redundant folders and obscure labels. Some names don’t tell anyone what you’re doing. Needless to say, now users are unable to remotely connect to the network and receive the Cisco AnyConnect “Cannot Login” error. When I check for Group Policy Objects (GPOs) that I have not made any changes to, one of them shows a “Not Found” error.
Is there a way to go back to the previous version of the AP and manage the GP?
Can you clarify a few things here please?
trim AD like cleaning active directory?
Overflow folder – do you mean OUs?
GPO hasn’t changed – what does this have to do with Cisco AnyConnect?
GPO not found – This is another problem I think..
To answer your question – you will need a proper backup to go back to an older version of Active Directory – the case in question. You don’t mention anything about domain controller versions or backups at all.
Cisco AnyConnect – Go to ASDM Firewall Management – I assume you have a Cisco ASA with AnyConnect VPN that links to Active Directory.
- ranking
- VPN remote access
- AAA/Local Users
- AAA server clusters
- Select the domain you have there – your domain – not local
- Change the settings for whatever DC you have there
- make sure that DN . base And Login Beside DN . basic group All are correct and valid
This should actually solve your Cisco AnyConnect issue – assuming that was your real question. Alternative you can recreate those paths in Active Directory by rebuilding the OU structure and moving the users or whatever was it ever…
It’s not clear what you did and how it’s set up – to me it looks like you’re deleting objects in Active Directory instead of moving and modifying things step by step and waiting to see if it affects anything while you don’t know how other systems related to it work – it can cause issues Great – please be careful when performing these “cleaning” operations
[ad_1]
Don’t forget to share this post with friends !
