Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 2 replies
  • Subscribers 38 subscribers
  • Views 13980 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Log and Authentication

BrunoZavettieri

HI all, i have two questions: 1.what is the difference in authentication server AD and LDAP. it seems to work in the same way. 2. there's a way to depth troubleshooting authentication from Shell? anyone know what are the log files in /etc/tslog that refer to authentication or if there are other one in another location?
I think that more people want to know how we can troubleshooting from console or shell because from log view it's not enough



Edited Tags
[edited by: Erick Jan at 11:15 PM (GMT -7) on 15 Sep 2022]
Parents
  • 0

    Hi Bruno,

    Active Directory, which supports a form of LDAP. Short answer: AD is a directory services database, and LDAP is one of the protocols you can use to talk to it.

    LDAP (Lightweight Directory Access Protocol) is an application layer protocol which is used over IP (Internet Protocol) to control directory services. Sophos Firewall (SF) interoperability with LDAP facilitates retrieval of user and groups records defined in the LDAP Server. SF supports integration with LDAP Server for user authentication services. SF also supports LDAPS/SLDAP over Secure Sockets Layer (SSL) / Transport Layer Security (TLS).

    It is completely upon you which Server to choose from, as that will be your local Network integration as per the Network compatibility.

    With Root privileges to Shell, you can navigate to cd /log directory and  run the following command :

    tail -f access_server.log

    I hope your queries are addressed. 

    Please let me for any further assistance.

    Thanks

    Sachin Gurung
    Team Lead | Sophos Technical Support
    Knowledge Base  |  @SophosSupport  |  Video tutorials
    Remember to like a post.  If a post (on a question thread) solves your question use the 'This helped me' link.

  • 0 in reply to sachingurung

    Hi Sachin,

    very thanks for reply to my questions.

    so, AD Server Authentication type retrieval information with a LDAP query?

    Thanks you for suggestion of log file. i will try to check and troubleshooting authentication issue with this log file. If you have other suggestion for troubleshooting this type(authentication) of problem please share CLI command :-)

Reply
  • 0 in reply to sachingurung

    Hi Sachin,

    very thanks for reply to my questions.

    so, AD Server Authentication type retrieval information with a LDAP query?

    Thanks you for suggestion of log file. i will try to check and troubleshooting authentication issue with this log file. If you have other suggestion for troubleshooting this type(authentication) of problem please share CLI command :-)

Children
No Data
Unfiltered HTML