Intercept X EAP issues with SAML Authentication

We have observed that the systems we tested the Early Access Agent on have run into issues with SAML Authentication. Any system we installed the BETA version on has broken authentication relying on our Hybrid Azure ADFS for authentication. Meaning that the users affected cannot log into any of our internal applications that usually rely on Single Sign ON via ADFS. Any attempts to log in to applications/resources reliant on this authentication result in null values being sent to ADFS, based on review of the logs from Azure.

I will add, that if we uninstall the EAP/BETA version and install the main version the issue is resolved. 

Parents Reply
  • The sites mentioned by our customers seem to be sites that require the user/computer to have/select a certain certificate to log on. Instead of the log on / select your certificate page they now immediately get the Website Blocked page from Sophos.

    When I create an exclusion for the site it works again (because it will not be checked in any way anymore).

    Maybe the customers ADFS site is not running TLS 1.2 and could be blocked for that reason? (though you don't see an error because the failure happens during a log on process and it will treat it as a failed logon)

Children