Forum Discussion
Stanislas_Piro2
Sep 11, 2018Cumulonimbus
Hi,
the problem is when your policy is like that:
start --> logon page --> variable assign --> AD auth
- First authentication logon page is managed in Logon page box
- all other authentication attempts are managed within AD auth box... there is not backward in decision tree.
So every decision between logon page and AD auth are evaluated only once during first authentication.
To solve the issue,
- create a macro with "loop count" define to 3
- configure the same policy within this macro. except that you define the AD auth max attempts to 3.
- connect AD auth failure to loop ending.
the macro will force to evaluate again every box during next authentication attempts.