Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 2 replies
  • Subscribers 1 subscriber
  • Views 1103 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

E Console:connect user from a domain

WRB

Hello all:

We're running a new installation of Sophos 4.0.0.2362 on Windows Server 2003 x64.

The installation is on a standalone server.  I am not on a domain, and have sucessfully installed the Enterprise Console on my workstation.

I cannot connect a user to the Enterprise Console who is on a domain.  I am not on the domain.  The Sophos server is not on a domain.  We are both in all the same groups on the Sophos server.

Is there something that has to be done to authenticate a user from a domain to run the Enterprise Console from their workstation??

Thanks !!

:smileyindifferent:   .... wondering....

WRB

:2437


This thread was automatically locked due to age.
  • 0

    Hello WRB,

    it's tricky but it can be done if you can connect to the domain from your server. Actually two accounts are involved when using the console:

    The user used to connect to the server (which can be different from the one logged on to the workstation) must have sufficient rights to run the console (you probably know already which groups he must be a member of). While storing  network passwords is a security risk it can be done this way. You create a user on the server for this. The domain user opens Stored Passwords ... and adds user and password for the server (using the FQDN).

    The user logged on to the workstation is used by SEC to check the permissions for roles and sub-estates. For this open SEC, Manage roles and sub-estates ->  User and Group view -> Select user or group and add the user (domain\user) in Enter objectname ... - you should get prompted for an account to access domain information. Do the same to add the user to a sub-estate.

    [Edit:] re-reading your post it could be that I have not quite get the part  We are both in all the same groups on the Sophos server. Who's we? The domain user in the non-domain server's local group? Anyway - what I described works for domain user on domain workstation to server outside domain.

    Hope this works for you

    Christian

    :2441
  • 0

    Thanks for the quick reply !!

    I shall check out your advice.

    Cheers.

    :2443
Unfiltered HTML