AD (active directory) user authenticate check

Created March 05, 2018 15:08 - Updated December 12, 2023 15:24

Serhii Boiarynov

This step by step guide shows how to check the bind status for AD correctly by SSH.

You can use the following commands to verify that:

debug domain-auth test profile-name [ad profile name] username [username] password [password]

Example

Check successful

Router> debug domain-auth test profile-name ad username test password 12345678
Using short domain name -- BE
Joined 'BGO-ZYXEL-NXC' to dns domain 'test.your-domain.com'
/usr/sbin/winbindd -s /var/zyxel//ZyXELad.conf
ntlm_auth --username=test --password=12345678
NT_STATUS_OK: Success (0x0)
/usr/bin/killwinbind ad

Check failed

Router> debug domain-auth test profile-name ZyXEL_AD username zt01806 password 12345678
The configure is not ok!

Which means you have to check the configuration on the firewall or windows server.

Articles in this section

AP Controller - Change Access Points managed by an NXC-controller to your Firewall
Firewalls / NXC Series - Troubleshooting Access Points [via Controller]
NWD7605 [Wireless Adapter] - how to install and use Wireless Stick with Windows 11
Captive Portal [External/Internal Portal Page] - Customizing the HTML page of the external portal for the developer
Configuration of LAN 1 port for VLAN101 without tagging
NXC Wireless LAN Controller [Captive Portal:] - How to Setup a Redirect on NXC or Access Point
What is the meaning of 802.11 Deauthentication Reason Codes?
RADIUS Authentication with 802.1X
Static IP Information for CAPWAP connection on NXC
Packet Capture through Webinterface on NXC for Access Points (AP)

Example

Articles in this section

This website uses cookies