Problem
The login with DRACOON for Windows/Mac in connection with Active Directory authentication fails with the following error message: "Login failed. Error -10011. Wrong username or password".
In this case, the user's e-mail address is displayed in the "Username" field in the login window and is apparently used for login - however, the user's Active Directory username should be used as the username, not the e-mail address.
Even if the username is corrected in the login window and the "Save password" checkbox is activated , the changed username is not saved - the problem occurs again at the next login.
Cause
In version 3.1.0 DRACOON for Windows/Mac does not support direct authentication via Active Directory anymore. The connection is established if the username is corrected manually and the e-mail address is replaced by the Active Directory username, but a permanent storage of the desired Active Directory username is no longer possible.
Already since version 3.0.1 of DRACOON for Windows/Mac only OAuth should be used for authentication (currently all authentications at DRACOON are changed to OAuth).
For more information, see the release notes for version 3.0.1
Solution
Switch the authentication of the bookmark to OAuth. To do this, follow the steps below:
- Click on the DRACOON icon in the notification area of the taskbar (Windows) or in the status menu of the menu bar (Mac).
- Point to the desired bookmark and click Edit Bookmark in the submenu.
- In the dialog box, click the drop-down box at the top and select the first entry in the list (DRACOON):
- Click OK to save the changes.
From the next login OAuth is used for authentication. For this purpose a browser window opens with an OAuth-based login form, in which up to DRACOON Server 4.12 the desired authentication method (e.g. Active Directory) can be selected if necessary:
Starting from DRACOON Server 4.13 always a certain authentication method is firmly linked with the username, so that the manual selection of the authentication method at the login is no longer necessary - therefore the field "Authentication method" is no longer displayed in the login form starting from server version 4.13.
Comments
0 comments
Article is closed for comments.