NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
ReadyNas 422 firmware 6.10.4, active directory users don't authenticate when Ad is offline
ReadyNas 422 firmware 6.10.4, active directory users don't authenticate when Ad is offline
I have successfully configured the NAS to authenticate users in my domain controller.
But when I power off DC, to test if users can still authenticate on the NAS, they don't authenticate.
I thought that there was some kind of cache in the NAS that permit authentication in case of failure contacting DC.
I haven't pick the option "Do not cache ADS accounts locally".
Any suggestion would be great.
Many thanks
1 Reply
I don't think the option will cache or not cache user credentials, but rather it is a means of keeping (caching) user profiles in the database so that you can set permissions on shares for AD users and groups, etc.
https://kb.netgear.com/28038/ReadyNAS-OS-6-Do-not-cache-ADS-accounts-locally-option
I don't have the means to test AD from within my setup but I would think the ReadyNAS will query AD for every auth attempt - sounds like it from your description.
Most ReadyNAS scenarios/use cases would probably be NTLM authentication and I expect this to be transparent to the ReadyNAS - i.e. the NAS just forwards the auth requests to the Domain controller(s). There might potentially be a small cache timer somewhere (like 5 mins or something) to limit the amount of potential Auth requests sent to AD but I would not expect this to be an "indefinite" cache until AD is online again, as you suggest, and do not think it has relation with the: "Do not cache ADS accounts locally" option.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
