This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Restrict LDAP VPN users to AD security group

I have setup AD authentication to our XG for Sophos Connect, everything is working well (users auto import when connecting to the user portal and VPN connects no problems).

Is it possible to restrict User Portal/VPN Connections to a particular security group, currently my search query is dc=domain,dc=local.



This thread was automatically locked due to age.
  • Hi : Thank you for reaching out to the Sophos community team. On XG user membership to the group will be based on tight integration and based on that user will be part of the same group on which it is part or added on the AD server (if the same AD group is preset on XG) else it will be part of default group define OR selected in XG GUI ( if no matching AD group of that user found on XG).

    Sophos Firewall: Group membership behavior with Active Directory

    https://support.sophos.com/support/s/article/KB-000035734?language=en_US

    On the remote access VPN, GUI configuration we have the option to define user group (this defined user and groups give permission who can connect using the Sophos Connect client.) So if you will choose a specific group below that will only allow Sophos connect  VPN to that group and the user which belong to that group.



    Regards,

    Vishal Ranpariya
    Technical Account Manager | Sophos Technical Support

    Sophos Support Videos | Knowledge Base  |  @SophosSupport | Sign up for SMS Alerts |
    If a post solves your question use the 'This helped me' link.