This thread was automatically locked due to age.
Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.
Hello Alpha ,
Thanks for reaching out to Sophos Community.
You may review the Device Access Profiles and their privileges on this doc guide: https://doc.sophos.com/nsg/sophos-firewall/20.0/help/en-us/webhelp/onlinehelp/AdministratorHelp/Profiles/DeviceAccess/index.html
Regards,
Raphael Alganes
Community Support Engineer | Sophos Technical Support
Sophos Support Videos | Product Documentation | @SophosSupport | Sign up for SMS Alerts
If a post solves your question use the 'Verify Answer' link.
Hello Raphael Alganes
Hello Raphael Alganes
Hello Alpha ,
Thanks for the additional information. I misunderstood your initial question, and I was under the impression that you were asking for role-based administration details.
Nonetheless, for the given details, you would need a DNAT rule to the VM provided to Tisax Team, and in Sophos Firewall create a Firewall rule that allows the VM to access any subnet in the network.
Regards,
Raphael Alganes
Community Support Engineer | Sophos Technical Support
Sophos Support Videos | Product Documentation | @SophosSupport | Sign up for SMS Alerts
If a post solves your question use the 'Verify Answer' link.
Hello Raphael Alganes
Thank you for your quick feedback
Hello,
You should create it in your Sophos Firewall. Make sure to only allow the specific IP from where they’re going to connect to the device.
Since opening a DNAT to RDP to a device isn’t recommended.
Regards,