Skip to content
  • There are no suggestions because the search field is empty.

RSA NetWitness GUI does not allow existing external useraccount to log in when Active Directory groups removed and re-added.

Issue

When Active Directory groups were removed and re-added in ADMIN->Security->External Group Mapping page, Existing external user account (without domain) gets authentication error while logging in to NetWitness GUI.

However, UserPrincipleName (USER@DOMAIN.COM) able to login GUI.

Cause

This issue is due to existing external user account conflict.



Resolution

When external user first time logs in to GUI, useraccount will be created automatically in ADMIN->Security->Users page.
When Active Directory groups removed and re-added. The user account should be recreated during the first login.

Please follow the below steps to allow User (without domain) to login GUI.
  1. Navigate to ADMIN->Security->Users page.
  2. Select all existing old external user accounts (without domain) and delete them.
  3. Verify GUI login with the user account (without domain) which will be a success.
Note: User custom dashboards still exist as earlier access.

Product Details

RSA Product Set: RSA NetWitness Platform
RSA Product/Service Type: NetWitness GUI
RSA Version/Condition: 11.X
Platform: CentOS
O/S Version: 7

Summary

This document outlines the procedure to allow existing external useraccount to log in NetWitness GUI.


Approval Reviewer Queue

RSA NetWitness Suite Approval Queue