About FelixXia

‎05-27-2022

since

L0 Member

2
Posts
0
Likes
0
Solutions
May 27, 2022
Last Visited

User Activity

User Profile

Re: X-Auth IPSEC tunnel for Mobile doesn't work

842

‎09-10-2021 02:11 PM

X-Auth IPSEC tunnel for Mobile doesn't work

945

‎09-08-2021 07:19 AM

User Badges

Community Statistics

Member Since	‎06-01-2020 04:34 AM
Date Last Visited	‎05-27-2022 03:47 PM
Posts	2

Hello again. As you pointed out. there still appears to be a configuration for requiring OTP. If it was sent for LDAP authentication, then it should not be be asking for OTP. Why does the screen still show this? If you disabled this requirement, then I believe the FW would work. If you need OTP, then when you pass whatever OTP or creds, you are sending them TO the the Radius server. You can try to config local authentication (Device ==> Local Users) and create an Auth Profile that points to the Local Users. Do this as test. If you can authenticate locally, but cannot when you implement Radius, then you would come to the conclusion that it is the external authentication profile that is preventing access. The best and recommended course, is to purchase a Global Protect gateway subscription license, ideally, this is the proper way to implement Global Protect for mobile devices. The XAuth was really for Linux machines.