When VPN user-based authentication fails, which of the following debug logs is essential to understanding the issue?
A. VPN-1 kernel debug logs
B. IKE.elg
C. Vpnd.elg
D. fw monitor trace
2 Comments on “which of the following debug logs is essential to understanding the issue?”
loaderssays:
The correct answer is vpnd.elg, NOT ike.elg.
0
0
prosto_marussiasays:
Agree with loaders. Correct answer is C – vpnd.elg.
Example of error message from vpnd debug log. It shows gateway cannot get authenticating group for the user:
[vpnd 5997 4126250688]@CPFW-R77.20[26 Dec 13:40:22] check_uint_attribute_value: failed to get attribute [sr_info_auth_grps_fetched] from userobject
[vpnd 5997 4126250688]@CPFW-R77.20[26 Dec 13:40:22] check_uint_attribute_value: read attribute [sr_info_auth_grps_fetched] on user object, value is 0
The correct answer is vpnd.elg, NOT ike.elg.
0
0
Agree with loaders. Correct answer is C – vpnd.elg.
Example of error message from vpnd debug log. It shows gateway cannot get authenticating group for the user:
[vpnd 5997 4126250688]@CPFW-R77.20[26 Dec 13:40:22] check_uint_attribute_value: failed to get attribute [sr_info_auth_grps_fetched] from userobject
[vpnd 5997 4126250688]@CPFW-R77.20[26 Dec 13:40:22] check_uint_attribute_value: read attribute [sr_info_auth_grps_fetched] on user object, value is 0
0
0