Hi all,
I have an instance of Sophos UTM running in AWS. I have set up a remote authentication server with our AD and all is working fine. There is a security group in AD that is intended for SSL VPN users.
I have created a backend membership group on the UTM and limited it to the SSL VPN group in AD.
I have set up and tested SSLVPN with the default "Active Directory Users" group and it is fine. Users can log into the User Portal and access the Remote Access menu to download the installer and can connect and access internal resources. The issue begins when I change the group on the SSL VPN config to the SSL VPN Users group as per screenshot above.
When I do this, the Remote Access options disappears from their User Portal and they can no longer connect.
It looks like the UTM can't see the membership of that group, but I added the group to Prefetch list and ran a prefetch and it finds the group members and creates them on the UTM as per the log below.
This thread was automatically locked due to age.