We're trying to configure capsule connect to allow smartphones to build a VPN tunnel and want the users to authenticate using their active directory account. We've previously configured SNX and have successfully used our active directory account to authenticate and build the ssl VPN tunnel, but whenever we try to use our AD account on capsule, it fails saying wrong user/pass. Using capsule with a local account (local to Checkpoint) works fine, but it's when we try our AD account is when it fails.
We're running unified policy.
Anyone have any ideas or run into this themselves?