Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL VPN || AD SYNC

Hi,

Sophos is synchronized with Active Directory (AD), and when we disable a user's profile in AD, they should no longer appear in the Sophos user list. However, I noticed that some disabled users are still showing up in the Sophos user list. My question is whether it's possible for these same users to still attempt to connect through SSL.



This thread was automatically locked due to age.
Parents
  • Hi satyabrata,

    Thank you for reaching out to Sophos Community.

    Can you try to remove the user from the SSL VPN group? Also, kindly check the log viewer for more details if they can still access or try to access 

    Erick Jan
    Community Support Engineer | Sophos Technical Support
    Sophos Support Videos Product Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.

  • Not sure if this works and whether it is the same with AD-deleted accounts that also stay on XG.

    For this we occasionally click the "Purge AD users" button so all accounts that are removed from AD are also removed from XG. This may however not be an option for disabled user accounts.


    Managing several Sophos firewalls both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

Reply
  • Not sure if this works and whether it is the same with AD-deleted accounts that also stay on XG.

    For this we occasionally click the "Purge AD users" button so all accounts that are removed from AD are also removed from XG. This may however not be an option for disabled user accounts.


    Managing several Sophos firewalls both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

Children
No Data