Issue: AD ephesoft settings are confirmed to be setup properly, but users are still unable to login. When the users credentials are tested against Jexplorer the following error displays.

LDAP: error code 49 – 80090308

knowledge4

 

Analysis:

               

  1. Above error is observed when an user is not authorised to login from the machine in use.
  2. In AD server there is a field userWorkstations” corresponding to each user, that stores the list of machines from which a user is authorised to login. In this way a user can be restricted to login from a particular system or set of systems only.
  3. To allow a user to login from any machine, userWorkstations needs to empty for that particular user.

External References:

https://4sysops.com/archives/deny-and-allow-workstation-logons-with-group-policy/

Was this article helpful to you?

Walter Lee

Comments are closed.