Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 14 replies
  • Answers 1 answer
  • Subscribers 41 subscribers
  • Views 2692 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Captive Portal re-authenticating users when roaming to different Unifi Access Points

Temidayo Abayomi-Zannu

Good day,

Sophos Captive portal has been enabled at our site and works but we noticed that if users move around the premises and roam to a different access point, they would have to reauthenticate using the captive portal. I had even set the signout users to Never and configured the APs to all act as one via the controller. We currently utilize Unifi APs and Switches which are all managed via a single controller.

Here is my current configuration.

Does anyone have an idea what could be causing this?

Thank you.



This thread was automatically locked due to age.
Parents
  • 0

    Hi Temidayo Abayomi-Zannu

    Just wondering same setup was working earlier and stopped working now?

    Regards

    "Sophos Partner: Networkkings Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to Bharat J

    Hello,
    We started utilizing the captive portal about a month ago due to the site being a factor and multiple known/unknown users connecting to the network.

    We did have this set up at a similar location and the same issue still occurs.

    Now users with Apple devices are complaining that the Captive portal pages isn't opening anymore and they are getting this error.

    I'll reach out to Sophos Support regarding this as suggested.

  • 0 in reply to Temidayo Abayomi-Zannu

    Can you share current setting under CONFIGURE-->Authentication-->Web authentication-->Captive portal behavior ? with screenshot ?

    Did you allow DNS service on any Zone without restriction ? Post the firewall rule if yes 

    Regards

    "Sophos Partner: Networkkings Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to Bharat J

    Yes i did as seen in the image below.

    Regards.

  • 0 in reply to Temidayo Abayomi-Zannu

    Can you share current setting under CONFIGURE-->Authentication-->Web authentication-->Captive portal behavior ? with screenshot ?

    "Sophos Partner: Networkkings Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to Bharat J

    Good day,
    The captive portal details are listed below.

    DNS route was also created. The captive portal does work but am currently experiencing 2 major issues.

    • Users get disconnected and have to re-authenticate via the Captive Portal.
    • IOS users sometimes get the error message as shown in the prior image.

    Regards.

  • 0 in reply to Temidayo Abayomi-Zannu

    For tshoot keep DNS rule as below without any policy applied 

     From iOS device,Press the “I” next to the wifi name, go to “configure DNS”, change it from automatic to manual, and type “8.8.8.4” into the DNS server if you have dns locally hosted set the same DNS and try for troubleshoot.

    "Sophos Partner: Networkkings Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.



    .
    [edited by: Bharat J at 4:40 PM (GMT -7) on 14 Jun 2024]
Reply
  • 0 in reply to Temidayo Abayomi-Zannu

    For tshoot keep DNS rule as below without any policy applied 

     From iOS device,Press the “I” next to the wifi name, go to “configure DNS”, change it from automatic to manual, and type “8.8.8.4” into the DNS server if you have dns locally hosted set the same DNS and try for troubleshoot.

    "Sophos Partner: Networkkings Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.



    .
    [edited by: Bharat J at 4:40 PM (GMT -7) on 14 Jun 2024]
Children
Unfiltered HTML