Restrict LDAP VPN users to AD security group

Question

I have setup AD authentication to our XG for Sophos Connect, everything is working well (users auto import when connecting to the user portal and VPN connects no problems). 
 Is it possible to restrict User Portal/VPN Connections to a particular security group, currently my search query is dc=domain,dc=local.

Vishal_R · Accepted Answer

Hi Liam Evans : Thank you for reaching out to the Sophos community team. On XG user membership to the group will be based on tight integration and based on that user will be part of the same group on which it is part or added on the AD server (if the same AD group is preset on XG) else it will be part of default group define OR selected in XG GUI ( if no matching AD group of that user found on XG). Sophos Firewall: Group membership behavior with Active Directory https://support.sophos.com/support/s/article/KB-000035734?language=en_US On the remote access VPN, GUI configuration we have the option to define user group (this defined user and groups give permission who can connect using the Sophos Connect client.) So if you will choose a specific group below that will only allow Sophos connect VPN to that group and the user which belong to that group.

Restrict LDAP VPN users to AD security group

Top Replies