Administrative login is not allowed" when trying to log in to the management interface via GVC

Description

When connected to a SonicWall appliance with GVC, an authenticated GVC user must have administrative privileges in order to log in to the management interface.  If the user doesn't have administrative privileges, he will be redirected to https://IP address/loginDisallowed.html and will see the message "Administrative login is not allowed".  You do not have the administrative privilege required to login here.

NOTE: You are currently logged in to the SonicWall as a VPN Client user and login here is only allowed for management of the appliance. Since you do not have the privilege for that, please re-connect using an account with administrative privilege.

Resolution for SonicOS 7.X

This release includes significant user interface changes and many new features that are different from the SonicOS 6.5 and earlier firmware. The below resolution is for customers using SonicOS 7.X firmware.

  • At Device | Users | Local Users & Groups, Under Local Users tab, open the user object (the one used to login using GVC) and under the Groups tab, add SonicWall Administrators or Limited Administrators. 

    Image


    NOTE: The management must be enabled on the WAN GroupVPN in Network | IPSec VPN | Rules and Settings | Configure WAN GroupVPN | Advanced tab.
    Image

  • Once the change has been made, the user should disable the GVC connection, then reconnect and authenticate.




    Resolution for SonicOS 6.5

    This release includes significant user interface changes and many new features that are different from the SonicOS 6.2 and earlier firmware. The below resolution is for customers using SonicOS 6.5 firmware.

  • At Users | Local Users & Groups, Under Local Users tab, open the user object (the one used to login using GVC) and under the Groups tab, add SonicWall Administrators or Limited Administrators. 

    Image

     NOTE: The management must be enabled on the WAN GroupVPN in VPN | Base Settings | Configure WAN GroupVPN | Advanced tab.Image
     
  • Once the change has been made, the user should disable the GVC connection, then reconnect and authenticate.




Resolution for SonicOS 6.2 and Below

The below resolution is for customers using SonicOS 6.2 and earlier firmware. For firewalls that are generation 6 and newer we suggest to upgrade to the latest general release of SonicOS 6.5 firmware.

  • At Users | Local Users, open the user object (the one used to login using GVC) and under the Groups tab, add SonicWall Administrators or Limited Administrators.

    Image


    NOTE: The management must be enabled on the WAN GroupVPN in VPN | Settings | Configure WAN GroupVPN | Advanced tab.
    Image
  • Once the change has been made, the user should disable the GVC connection, then reconnect and authenticate.

Related Articles

  • CSR generation and re-signing for expired DPI-SSL certificates for Gen7 firewalls on SonicOS 7.0.1, Gen6 and Gen6.5 running on firmware SonicOS 6.5.X.X
    Read More
  • SonicWall GEN8 TZs and GEN8 NSas Settings Migration
    Read More
  • What are dynamic external objects/groups and how can we configure it?
    Read More

Categories

Firewalls
NSa Series
Firewall Management
Firewalls
NSv Series
Firewall Management
Firewalls
TZ Series
Firewall Management UI
not finding your answers?
Ask the Community