Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • +2 person also asked this people also asked this
  • Locked Locked
  • Replies 23 replies
  • Answers 2 answers
  • Subscribers 45 subscribers
  • Views 25729 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Authenticate AD Azure in SOPHOS

Oo-T

Hello Team,

I need your help please.
Is there any way to authenticate in Sophos AD Azure Users.
I have a hybrid infrastructure, with users in AD Onpermise and in AD Azure.
I was able to authenticate user in my AD Onpermise to access VPN Through Sophos but I do not know what to do regarding AD Azure Users.

Thank you for your help.



This thread was automatically locked due to age.
Parents Reply
  • 0 in reply to Kresimir Fotivec

    Hey Kresimir,

     answer from sophos support:

    "I got this discussed with my Senior team and I regret to inform but Authentication is not supported on WAN Zone as of now on the XG Firewall.

    But as a workaround, you can create an IPSec Tunnel and then use Authentication."

     So you have to create a vnet in azure with azureadomain-service, vm windowsserver (join domain & install ad-tools), gateway & vpn.

    Regards

    Philipp

Children
  • 0 in reply to Philipp Marx

    Hi all,

    We've managed to get this to work properly.

    Trick is that you need to properly parse bind and base DNs. Bind DN must be spelled without base DN.

    Bind DN user must be in format like this: CN=ldapbind,OU=AADDC users 

    Base DN must be in format like this: OU=contoso,OU=com

     

    Hope this will solve your problem.

     

    Best regards,

    Kresimir

Unfiltered HTML