We are now Quest and SonicWall Visit our new Support Portal at Quest and SonicWall.

Authentication Services - Search Global

Refine Your Search
Advanced Queries | | Increase Your Search IQ
Is Management Console for Unix affected by the DROWN vulnerability? CVE-2016-0800 (188941)

Is Management Console for Unix affected by the DROWN vulnerability? CVE-2016-0800 'Decrypting RSA with Obsolete and Weakened eNcryption' - DROWN More information on the DROWN issue can be found at the following ...

Mapped user that is not unix enabled cannot authenticate intermittently.When the user shows is in the negative cache the user cannot login. (216452)

Mapped user that is not unix enabled cannot authenticate intermittently. Cached users who are also in the neg cache can't log in, internal error. Steps to confirm issue: /opt/quest/bin/vastool list -a user - Shows the username. /opt ...

FAILURE: 307 Unknown vastool kinit result/error: (104298)

Vastool Status is getting reports with unknown vastool kinit errors. Cause: Permissions on /var are not correct. RESOLUTION: 1 - Check the permissions on /var are 755. $ ls -lad /var/. drwxr-xr-x 39 bin bin 4096 Nov 17 2014 /var/. 2 - If the permissions are not correct change them: ...

vastool status messages WARNING: 231 Unable to determine QAS daemon's connectivity state. FAILURE: 705 vasd does not appear to be running. (104610)

When running "/opt/quest/bin/vastool status" the following messages are seen: WARNING: 231 Unable to determine QAS daemon's connectivity state. Failed with error: 107. WARNING: 231 Unable to determine QAS daemon's connectivity state. Failed with error: 76. ...

Disconnected from Active Directory (AD). /opt/quest/bin/vastool status reports: WARNING: 231 QAS daemon is operating in a disconnected state. (104839)

Disconnected from Active Directory (AD). Authentication Services enters into disconnected mode. Running /opt/quest/bin/vastool status command reports WARNING: 231 QAS daemon is operating in a disconnected state. CAUSE 1: Product Defect 319479 in QAS 4.1.0.20185. ...

How to upgrade Authentication Services (117005)

This article is to explain the different methods of upgrading Authentication Services. There is multiple ways to upgrade QAS on the system. RESOLUTION 1: Use the install.sh script at root of the product download to upgrade. ...

CIFS Error when trying to apply a group policies using Vintela Group Policy (VGP). Could not connect to any server: NT_STATUS_CONNECTION_REFUSED (26525)

When trying to apply a Group Policy to a UNIX client the following error is displayed and the group policy is not applied: CIFS error unable to log on to \\domainname\sysvol\domainname\GPOid\gpo.ini. Unable to connect to any domain controller. NT_connect refused. ...

Quest Support is now on Twitter! (215712)

Stay up to date with Support as our Social Knowledge Domain Experts (SKDEs) tweet out valuable information and answer your questions. Follow us on Twitter @Quest Experts. Twitter isn't the only place you'll find us, did you ...

Unable to connect via SSH into a Red Hat 6.x or 7.x. vastool status reports INFO: SELinux enabled (70022)

Unable to connect via SSH into a Red Hat 6.x or 7.x installation with Selinux enforced. Su'ing twice to Authentication Services works fine. vastool status reports INFO: SELinux enabled. WORKAROUND 1: 1 - Temporarily switch off selinux: echo 0 >/selinux/enforce. ...

How to create an SELinux policy for Authentication Services (119007)

A SELinux-hardened system will run with SELinux in enforcing mode, meaning that the SELinux policy is in effect and things that it doesn't want to allow won't be allowed. Authentication Services can work with any pam enabled ...

Error message when profiling Solaris server in Management Console for Unix. (215527)

The following error message is shown when trying to profile a Solaris server in Management Console for Unix: "Could not complete the task because the required file (/tmp/sugi29503/minichat) could not be scp'd to the host". ...

VAS not starting on reboot on Solaris hosts (215380)

On Solaris servers VAS does not started up on its own after reboot. Product Defect:612355. scripts: On solaris, wait for the vasd binary to exist before continuing, this. should help on systems where / mounts before /opt. The fix was just in the init script itself. RESOLUTION: ...

SAP startup fails on HPUX when 4.1 is installed (141549)

On SAP 7.1+ running on HPUX 11.31 ia64 with Authentication Services 4.1, SAP fails to startup. Attempt to start up the SAP server and it appears to get stuck while trying to accept the intial creds as shown in the dev_w0 logs ...

"Object matching linuxhost.example.com found in different container" error when joining host to domain (215348)

When trying to join a QAS host to a domain the following error is encountered: # /opt/quest/bin/vastool -u administrator join -c OU=UNIX,DC=EXAMPLE,DC= COM example.com. Checking whether computer is already joined to a domain ... ...

Unable to use NFSv4 with Authentication Services (54713)

Unable to use NFSv4 wtih Authentication Services. reverse lookup was not setup for the machine. 1 - DNS must be fully functioning in order for NFSv4 to work on Redhat. Be sure both forward and reverse lookup are working ...

Problems compiling Recource Central Projects (62326)

You have downloaded the source pacakge and have encountered problems while compiling. Assistance for this type of problem is not available through the standard Technical Support channel. Below is a link to the community: ...

Trying to connect PHP tool to active directory (75467)

Web app that uses PHP want to be able to use QAS ldap search from within the web app. The vasdev package is the package you will need to install to get the QAS programming API. The QAS developer packages can be found ...

How to get help with QAS api or the QAS software developers kit (SDK)? (73147)

How to get help with QAS api or the QAS software developers kit (SDK)? The QAS Software Developers Kit (SDK) is supported by the below community. Assistance for this type of problem is not available through the standard Technical Support channel. ...

Can Quest Authentication Services (QAS) use LDAPS rather than LDAP? (59543)

Can QAS use LDAPS - Secure LDAP rather than LDAP? No, QAS only supports LDAP (Port 389). LDAPS (Port 636) is not supported. Our LDAP traffic is secured via GSS-API. For more details please read the following KB by clicking the link: ...

Solaris 11.1 - Cannot login - WARNING: NSS lookup (getpwnam) for user (215277)

On Solaris 11.1 systems after a reboot users cannot log in. Errors such as the following are seen: /opt/quest/bin/vastool user checkaccess jdoe WARNING: NSS lookup (getpwnam) for user jdoe failed. You will be unable to log in with a username of jdoe. ...

How to uninstall QAS? (96574)

How to uninstall QAS? The first step would be to do a vastool -u <adadmin> unjoin command. After that you could either uninstall using the install.sh script or by using the operating system commands. Using the install.sh command. ...

How to create a user keytab with vastool ? (84233)

How can you create a keytab using vastool for a user account, for instance you would like to use kerberos credentials to automate sso logins via sshd instead of using sshd keys. There are a few ways to do this. The first would require changing the password on the account. ...

How to create a group in Active Directory from the Unix client. (214963)

What is the command to create a group in Active Directory from a Unix system running Authentication Services? The following command as an example will create the group named test1 in the OU called Test2: #/opt/quest/bin ...

Authentication Services On-site Health Check

This services offering consists of two (2) eight-hour days during which One Identity will assist the Customer with analyzing and documenting the performance of the Authentication Services software in their environment. Recommendations ...

Request More Information

Does Authentication Services work with Azure Active Directory Domain Services? (208427)

Microsoft Azure offers Azure Active Directory Domain Services as well as virtualization services. More details can be seen here. https://azure.microsoft. com/en-us/documentation/articles/active-directory-whatis/. Does Authentication ...