- Products
- Network Security
Next Generation FirewallNext-generation firewall for SMB, Enterprise, and Government
Security ServicesComprehensive security for your network security solution
Network Security ManagerModern Security Management for today’s security landscape
- Advanced Threat Protection
Capture ATPMulti-engine advanced threat detection
Capture Security applianceAdvanced Threat Protection for modern threat landscape
- Access Security
Cloud Edge Secure AccessDeploy Zero-Trust Security in minutes
Secure Mobile AccessRemote, best-in-class, secure access
Wireless Access PointsEasy to manage, fast and secure Wi-FI
SwitchesHigh-speed network switching for business connectivity
- Email Security
Email SecurityProtect against today’s advanced email threats
- Cloud Security
Cloud App SecurityVisibility and security for Cloud Apps
Cloud Firewall (NSv)Next-generation firewall capabilities in the cloud
- Endpoint Security
Capture ClientStop advanced threats and rollback the damage caused by malware
Content Filtering ClientControl access to unwanted and unsecure web content
- Product Widgets
- Product Menu Right Image
- Network Security
- Solutions
- Solutions Widgets
- Solutions Image Widgets
- Solutions Widgets
- Partners
- Partner Widgets
- Partners Image Widgets
- Partner Widgets
- Support
- Support Widget
- Support Image Widgets
- Support Widget
- Products
- Network Security
- Next Generation FirewallNext-generation firewall for SMB, Enterprise, and Government
- Security ServicesComprehensive security for your network security solution
- Network Security ManagerModern Security Management for today’s security landscape
- Advanced Threat Protection
- Capture ATPMulti-engine advanced threat detection
- Capture Security applianceAdvanced Threat Protection for modern threat landscape
- Access Security
- Cloud Edge Secure AccessDeploy Zero-Trust Security in minutes
- Secure Mobile AccessRemote, best-in-class, secure access
- Wireless Access PointsEasy to manage, fast and secure Wi-FI
- SwitchesHigh-speed network switching for business connectivity
- Email Security
- Email SecurityProtect against today’s advanced email threats
- Cloud Security
- Cloud App SecurityVisibility and security for Cloud Apps
- Cloud Firewall (NSv)Next-generation firewall capabilities in the cloud
- Endpoint Security
- Capture ClientStop advanced threats and rollback the damage caused by malware
- Content Filtering ClientControl access to unwanted and unsecure web content
- Product Widgets
- Product Menu Right Image
- Network Security
- Solutions
- Solutions Widgets
- Solutions Image Widgets
- Solutions Widgets
- Partners
- Partner Widgets
- Partners Image Widgets
- Partner Widgets
- Support
- Support Widget
- Support Image Widgets
- Support Widget
Troubleshooting a "Login failed - HTTPS Administrator login not allowed from here" Error
10/14/2021 
68 People found this article helpful
115,992 Views
Description
This document covers troubleshooting steps to resolve the error "Login failed - HTTPS Administrator login not allowed from here".
Cause
The "HTTPS Administrator login not allowed from here" error message is generated during the following scenarios:
Scenario 1. Error is generated while trying to manage the SonicWall via VPN tunnel.
Scenario 2. If SonicWall is configured to enforce users to enter a username and password before accessing the Internet websites.
Scenario 3. Error while managing the SonicWall from Accept a computer on a wireless Zone.
Resolution
Resolution for SonicOS 6.5
This release includes significant user interface changes and many new features that are different from the SonicOS 6.2 and earlier firmware. The below resolution is for customers using SonicOS 6.5 firmware.
Scenario 1: Error is generated while trying to manage the SonicWall via VPN tunnel.
- Login to SonicWall management Interface, Click MANAGE on the top bar navigate to VPN | Base Settings page.
- Edit the appropriate VPN policy, go to Advance tab.
- Enable the HTTPS box under the Management via this SA option.\
- Save the changes.
Scenario 2: If SonicWall is configured to enforce users to enter a username and password before accessing the Internet websites.
- Login to the SonicWall GUI.
- Click MANAGE on the top bar , navigate to Network | Interfaces page, and edit the appropriate (e.g. X0 or LAN) Interface.
- Enable the HTTP or HTTPS under User Login options.
- Save the Changes
Scenario 3: Error while managing the SonicWall from a computer on a wireless Zone.
There are four ways to resolve this issue
- Disable WiFiSec Enforcement on the Wireless Zone or Wireless | Settings page in SonicOS Enhanced, (if you running SonicOS Standard then navigate to Wireless | Settings page), then access the SonicWall's LAN IP address for remote management.
When WiFiSec enforcement is enabled, it is not possible to access the SonicWall for remote management from a wireless connection unless a tunnel is successfully established using Global VPN Client. The Llogin failed - HTTPS Administrator login not allowed from here error is shown in this situation.
- Access the SonicWall's LAN IP address for remote management with a browser on a computer that is located on the LAN, not the wireless connection.
- Use Global VPN Client on the wireless computer to establish the tunnel typically used for WiFiSec connectivity, then access the SonicWall's LAN IP address for remote management.
NOTE: With WiFiSec disabled, access rules allowing traffic from the WLAN to the LAN may permit LAN access to all users on the WLAN. This action may not be recommended in some situations for security reasons.
- Enable HTTPS management via the WLAN interface. In SonicOS Standard, create a rule on the Manage | Rules | Access Rules page allowing HTTPS management from any source to the WLAN. In SonicOS Enhanced, select the Network | Interfaces page, edit the WLAN interface and enable HTTPS management.
Resolution for SonicOS 6.2 and Below
The below resolution is for customers using SonicOS 6.2 and earlier firmware. For firewalls that are generation 6 and newer we suggest to upgrade to the latest general release of SonicOS 6.5 firmware.
Scenario 1: Error is generated while trying to manage the SonicWall via VPN tunnel.
- Login to SonicWall management Interface, navigate to VPN | Settings page.
- Edit the appropriate VPN policy, go to Advance tab.
- Enable the HTTPS box under the Management via this SA option.
- Save the changes.
Scenario 2: If SonicWall is configured to enforce users to enter a username and password before accessing the Internet websites. (refer KBID How Can I Setup CFS To Block Internet Access To A Specific Group? )
- Login to the SonicWall GUI.
- Navigate to Network | Interfaces page, and Edit the appropriate (e.g. X0 or LAN) Interface.
- Enable the HTTP or HTTPS under User Login options.
- Save the Changes
Scenario 3: Error while managing the SonicWall from a computer on a wireless Zone.
There are four ways to resolve this issue
- Disable WiFiSec Enforcement on the Wireless Zone or Wireless | Settings page in SonicOS Enhanced, (if you running SonicOS Standard then navigate to Wireless | Settings page), then access the SonicWall's LAN IP address for remote management.
When WiFiSec enforcement is enabled, it is not possible to access the SonicWall for remote management from a wireless connection unless a tunnel is successfully established using Global VPN Client. The Login failed - HTTPS Administrator login not allowed from here error is shown in this situation. NOTE: If you are running SonicOS Enhanced 5.x or above you can find this option in the Diag page (Https://SonicWall_LAN_IP/diag.html) in SonicOS Enhanced.
- Access the SonicWall's LAN IP address for remote management with a browser on a computer that is located on the LAN, not the wireless connection.
- Use Global VPN Client on the wireless computer to establish the tunnel typically used for WiFiSec connectivity, then access the SonicWall's LAN IP address for remote management. NOTE: With WiFiSec disabled, access rules allowing traffic from the WLAN to the LAN may permit LAN access to all users on the WLAN. This action may not be recommended in some situations for security reasons.
- Enable HTTPS management via the WLAN interface. In SonicOS Standard, create a rule on the Firewall | Access Rules page allowing HTTPS management from any source to the WLAN. In SonicOS Enhanced, select the Network | Interfaces page, edit the WLAN interface and enable HTTPS management.
Related Articles
- Parserror on Event logs.
- Switch from the Policy mode to classic mode on Gen 7 appliances
- Analyzing TCP reset(RST)packets
Categories
- Firewalls > TZ Series > Firewall Management UI
- Firewalls > NSa Series > Firewall Management
- Firewalls > NSv Series > Firewall Management
YES
NO