I have a few questions on configure Active Directory authentication on my XGS.
I have followed the guide here:
Configure Active Directory authentication - Sophos Firewall
When I open the VPN portal, I cannot login using my AD user account?
If I add a new user in the AD, does it mean I have to import on the firewall all the time in order to use the VPN?
Isn't it setting the Primary authentication method to my_AD_Server is suppose to be able to authenticate with my AD already?
No, new added user on AD user group not to be imported all the time.When you add a new user on existing group on AD, you don't have to import the user as user "group" is already imported on Sophos…
At least, this topic is als not thought to the end by Sophos - non practic driven engineers.
ALL(!) VPN Users have to login to the User Portal at first. Then the local User Object ist created - with the password AD-Connectrion.
And then, these Objects are moved the local VPN Group!