• Active Directory Authentication is not working

    Georg Zoeller
    Georg Zoeller
    Hi Community, i have a problem with one of our customers setups, they're running a windows server 2012 Domain controller and i'm trying to connect the sophos utm 9.716 to it, however it always says failed to bind with this dn and password, server exists…
    • over 1 year ago
    • UTM Firewall
    • General Discussion
  • Sophos XG V18 - User from Active Director Server not in same group when synced to firewall.

    phong nguyen
    phong nguyen
    Hello everyone, I have configured user authenticate via Active Directory. I synced groups on AD to firewall already, AD's user can login to firewall user portal. Problem is if that logged in user in default OU such as "User" or "Computer" on AD, synced…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • AD user password expiry blocks VPN access

    Steve Abbott
    Steve Abbott
    We have a local DC with our domain users set up. No more than about 10 users. We use sophos XG firewall for some users to access local resources using the sophos VPN client from a PC, with 2FA (using a QR code initially to set up) Users in the sophos…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Remote Access VPN IPSEC

    admin_idl
    admin_idl
    Hello, we use IPSEC VPN for remote user. After moving a user to another OU in the active directory, the login does not work anymore. What settings can be checked here or must a new certificate be created for the user each time?
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Can I Use a user different than administrator to sync AD with Sophos XG

    juntacadaveres
    juntacadaveres
    I need to know if I can use a user with less privileges than administrator account to sync our AD with our Sophos XG Firewall Greetings!
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • IPsec Remote access VPN and Other group memberships active directory

    Guilherme Silva1
    Guilherme Silva1
    Hello Team! In my environment, I have groups created in Active Directory to control remote access via VPN on the firewall. Turns out this VPN group I created in AD, in the firewall's webadmin when looking up the user, is listed in the Other group…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • troubleshooting AD access

    GernotMeyer
    GernotMeyer
    Hi all, I actually troubleshooting AD-user login to user portal. System is XGS2300 actually patched. I setup AD user to be able to use SSL following this article https://support.sophos.com/support/s/article/KB-000038367?language=en_US . I did that…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Purge AD Users

    Chris69
    Chris69
    Hello, Q: How can we add / change E-Mail-address for ALL AD users? "Purge AD Users" does not update that attribute. We need this for quarantine digests. Not any user has the need to logon at userportal and/or connect via IPSEC - both adds / changes…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Synchronize firewall with azure AD where users connect to it via intune.

    Juan Santos
    Juan Santos
    I need to synchronize an Azure Active Directory of one of our customers that does not contain an LDAP service, the synchronization has the objective of connecting the users of that AD in the VPN IPSec Client, when synchronizing with the firewall I verified…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Benutzer Authentifizierung

    Dome
    Dome
    Hallo zusammen, ich bin auf der Suche nach einer Möglichkeit Benutzer zu Authentifizieren die auf eine AD-Netzwerk zugreifen möchten. Szenario: LAN 1 - 192.168.112.0 hier sitzt der Domaincontroller mit AD LAN 2 - 192.168.110.0 Netzwerk mit WAN…
    • over 1 year ago
    • Sophos Firewall
    • German Forum
  • Webserver Protection - Username und Gruppen des angemeldeten Benutzers

    Marc_2023
    Marc_2023
    Hallo, wir überlegen aktuell, für unsere XGS die Webserver Protection zu kaufen. In dem Modul Web Server Authentication ist es möglich, sich gegenüber dem IIS zu authentifizieren, wenn man diesen richtig Einstellt. Nun würden wir gerne die Daten…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • German Forum
  • XGS 19.6: AD user prefetch icl. Mail attribute

    Chris69
    Chris69
    Hello, In Sophos UTM SG there was a user prefetch - I am really missing this feature because I need to send quarantine-mails to every user on our on-prem exchange. Can´t believe that this is not longer implemented and users are only created when they…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • AD Authentication with STAS working but User firewall rules does not evaluate as authenticated

    IT_Chemes
    IT_Chemes
    I have two Domain controlers and on both installed STAS for twho Sophos XG HW appliance in HA active-pasive. After upgrade from 18.5.4 to 19.5.1 i have problem evaluating user rules. After upgrade i reinstall STAS to newwr vrsion on both DCs. I need reeneter…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • SOPHOS SSL VPN with different domains AD Controllers

    MustafaTASCI
    MustafaTASCI
    Hi; We have a large server farm behind sophos firewall. There are different domain name AD servers available. I can authenticate users over ADs with these different domains. I can also use AD authentication on SSL VPN connections. No problem till this…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • can't delete AD user in FW XG

    Fabiano Pamplona dos Santos
    Fabiano Pamplona dos Santos
    Hi guys, We can't delete some users from sophos firewall. When we tried do this, this message was presented: " Couldn't delete user. A firewall rule, VPN connection, web policy rule, or SSL/TLS inspection rule exists for this user " We already delete…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Sophos X Active Directory authentication with multiple managed domains

    Guilherme Silva1
    Guilherme Silva1
    Hello guys! I currently have a scenario that uses authentication between the firewall and Active Directory. In this same Active Directory, in addition to the main domain, I have other domains with linked users. In the authentication configuration…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • How to identify AD-imported groups in SFOS?

    LHerzog
    LHerzog
    Is it somehow possible to identify which groups in SFOS have their source in Active Directory? To me local and AD groups all look the same on SFOS. Even after export of them as entities.tar. That makes managing larger environments with local groups…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • AD Group FAQ update: nested / staggered groups

    LHerzog
    LHerzog
    Please add Information to FAQs for Active Directory users and groups maybe I already asked for that. Draft: User groups imported from AD + Does the firewall resolve staggered / nested AD group memberships? A: No. If you use staggered / nested…
    • over 1 year ago
    • Product Documentation Feedback
    • Feedback
  • SSL VPN with and without radius/mfa

    Louis D
    Louis D
    hello, we need to use both ssl authentication with radius/mfa for admins and no mfa for normal users. ssl authentication servers are radius and AD. when i (admin user) connect to openvpn, i need to use mfa but if i wait without validating mfa, i…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • SSL VPN SOPHOS XG 19.5 Build 197

    Christopher Kurdian
    Christopher Kurdian
    Hey Guys, I have followed the guides for creating an SSL-VPN that authenticates through Active Directory. When I have my laptop internal to the network and initiate a VPN connect it works fine. Connection is established. The logs show this. However…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • AD Authentication configured but users not allowed to login

    Enrico Zhan
    Enrico Zhan
    Hi to all Sophos Community, I was wondering if you had any idea on this problem. First time using Sophos firewalls, mostly working on them via Sophos Central Web Admin. So I enabled IPSec VPNs, it does work with local created users. Company asked…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Regla de Enrutamiento Estatico

    Roman Laboreo
    Roman Laboreo
    HOla! tengo un problema y a ver si alguien le ha pasado lo mismo y como puedo solucionarlo. Tengo un DC con DNS "pepito.local" donde tengo un servidor Web publicado al exterior por el dns https://CRM.pepito.com . En la zona LOCAL tengo creada…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Sophos XG Firewall not collecting AD Users

    Stuart Gay
    Stuart Gay
    So I have an XG firewall that is Authenticated with our 2 local AD Servers and was looking for some assistance with the below. 1. I did a migration to 2 new 2019 DCs last year and even though we kept the IPs the same, the names changed. Now for some…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Doesn't ping AD server when I connect with SSL VPN

    SAVAS
    SAVAS
    Merhaba, Uzak bir bilgisayardan SSL VPN ile Sophos güvenlik duvarına bağlandıktan sonra AD sunucuma erişemiyorum ve ping atamıyorum. ancak aynı ağdaki farklı bilgisayarlara ping atabilirim AD sunucum yerel ağımda çok iyi çalışıyor ve ping gitti…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Import Group Wizard hangs

    TrupiD
    TrupiD
    Hi, there is already discussion from 4 years ago (+) Import Group Wizard hangs at "Select AD groups to import" - Discussions - Sophos Firewall - Sophos Community that got solved. I have this exact problem also today on an XG 230 Appliance that…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
<>