I've had cases where communication with domain controllers was failing (seen in the dashboard as "The following domain(s) can't be contacted: xxx.xx (Origin: Authentication, ID: 903, xx times within last xx minutes). So I have an incident ID. I am still unable to precede or modify the authentication rule to handle this incident. If authentication fails users are blocked because of it. Sure I can do a fail open in my policy assignments further down in the Rule Sets, yet in order to workaround a failing DC communication I still have to manually disable the auth rule itself.
One follow-up question, because I couldn't find this answered in the documentation, whether there's a list of all potential return values? I'm asking because I'd like to see whether there's maybe other cases that I could include in my rule that assigns a default policy.
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.
Community Help Hub
New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.