• Is it safe to upgrade firmware from SFOS 16.05.3 MR-3 to SFOS 16.05.7 MR7 ?

    Rodrigo Silveira
    Rodrigo Silveira
    Hello, I have two questions: Is it safe to upgrade the firmware from SFOS 16.05.3 MR-3 to SFOS 16.05.7 MR7 ? I'm using STAS and I've been told that the MR7 firmware has some issues with those who use STAS. And I have two XG210 in HA mode (active-passive…
    • Answered
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • STAS doesn't register logins from most clients

    Björn Vermöhlen
    Björn Vermöhlen
    Hello everyone, I have serious issues with deploying STAS in a customers environment. I have installed the STAS agent in several environments according to KB123156 and haven't had any problems yet but on this system something seems to be wrong... …
    • Answered
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • Hello

    hamza zidane
    hamza zidane
    Hello Plz how can i bloc acces to the internet for NON-Aactive directory, or Local User. I already import my AD user and make the policy for only AD User, and check the " Match known users is selected" But i see that all PCs from the local subnet…
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • Can't login with windows user to user portal

    Nino Padrutt
    Nino Padrutt
    Hi I setup a new XG115 and added the AD Server with test connection was successful. Also I installed STAS but I it seems have to have an issue left since I can't login with my windows users. My Server has the IP 192.168.109.211 My XG115 192.168…
    • Answered
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • Setup STAS create a collector

    Nino Padrutt
    Nino Padrutt
    Hi I setup a new XG115 and tried to setup the STAS. For that I tried to follow this guide: https://community.sophos.com/kb/en-us/123156 Unfortunately, in the part for the firewall configuration it seems there are some commands missing: Step…
    • Answered
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • STAS - Users didn't show in the Live Users section.

    John Henry Vindas Carballo
    John Henry Vindas Carballo
    Hi all, I did configure STAS on a single DC. Communication between XG and DC it's working but some users didn't show up in the firewall. This means the firewall rules don't apply to him. AD Server: 128.128.128.28 XG appliance: 192.168.50.1 …
    • Answered
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • Enabling "logoff detection", The firewall disconnect users after some minutes

    Herberth Alves
    Herberth Alves
    I have problem with STAS. When I enable the option "Logoff Detection" (follow this article: community.sophos.com/.../123020) in a few minutes all users are disconnected from firewall ("current users"). It is just possible to reconnect after each user…
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • SSO authentication shows log in and out for users

    Alexander de la Guardia
    Alexander de la Guardia
    Hi everybody, i would like to know if it is normal to see in log that users authenticating via SSO continously logs in and out. I have this behavior in my network and sometimes its annoying, captive portal appears to som users and they are complayng.…
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • Can't see users on the groups I just import from AD.

    John Henry Vindas Carballo
    John Henry Vindas Carballo
    Hi all, I have setup a 210 with XG and STAS, I want to sync the users from the AD groups, I follow some guides but I can't see any user in any groups. I read some posts about this and they say all the users had to login into user portal so the XG…
    • Answered
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • Log of detection using WMI and STAS on two sites?

    ErikFranzén
    ErikFranzén
    This is a set up question. I have two UTM on different sites, A and B. Each site has a Windows 2016 server DC and STAS is working locally. The sites are connected to each other via Site2Site VPN. I am trying to achieve that a logged in user is registered…
    • Answered
    • over 7 years ago
    • UTM Firewall
    • General Discussion
  • Issues on terminal server

    CEBU_XG
    CEBU_XG
    I have recently deployed in the network. Our users are having issues getting proper access to network resources when browsing from the terminal server. What could be causing this? Can I apply User/Network rules to a terminal server? or Logins to Terminal…
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • STAS missing AD users on XG Liver Users

    ecompo
    ecompo
    Hey guys, I've configured STAS in an AD environment. This AD environment has 5 DCs so I setup 4 DCs as the agents and 1 as the collector. Everything works just fine except only 1 user are always missing from the live users on XG and Collector…
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • AD user authentication

    Iffi
    Iffi
    We can achieve AD user authentication in XG two way NTLM and STAS. My question is which method is best? Thanks Iffi
    • Answered
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • Sophos XG SSO IPv6 Issues

    JonathanBell
    JonathanBell
    We currently are utilizing STAS for transparent authentication to our Sophos XG firewalls. The issue we notice, is that all users are authenticated with their IPv4 address in STAS. Has anyone been able to transparently authenticate IPv6 and IPv4 users…
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • Use STAS to monitor users but still allow access to non-domain users.

    TonV
    TonV
    As the title says, is it possible to have STAS enabled for monitoring but still allow access to non-domain users to the internet without getting a captive portal page? And if this is possible, how should this be done rule wise?
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • User failed to login to firewall for one user

    Bill Roland
    Bill Roland
    I have a perplexing issue. I have STAS setup and working, all users are logged into the XG 210 firewall by STAS, except for one. If I delete him from the "users" table the next time he logs in, it works. But after he logs out and attempts to log back…
    • Answered
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • STAS and eDirectory not working

    Peter Sicklinger
    Peter Sicklinger
    Hello community! I'm trying to set up Sophos XG in combination with a Novell eDirectory server in a virtual testing environment, as I plan to migrate our customers who are currently using Novell eDirectory and other firewall solutions to a combination…
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • STAS not seeing users anymore

    Stefano Bonadiman
    Stefano Bonadiman
    Hello everyone, I'm having a big problem with stas authentication. I had the system configured and perfectly running until some weeks ago, and then, without changing anything and with no apparent reason, it has simply stopped working. i have this configuration…
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • XG blocking udp 6060 packets from STAS across ipsec tunnel/not working

    Mast_01
    Mast_01
    Hello, i have an XG in a branch office with a VPN tunnel to the main office with any-any rules both ways, main office has a UTM with the AD servers, stas is already configured there. the fixes for the broken xg net to net vpn funcitonality are also…
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • If you enable SSO/STAS, should you disable NTLM?

    Bill Roland
    Bill Roland
    Subject says it all; if you enable the STAS system for SSO, should you disable NTLM authentication? I am seeing what appears to be collision caused by having them both enabled, I see the SSO client get logged out by the firewall whenever the NTLM login…
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • STAS Registry Read Access vs WMI

    Bill Roland
    Bill Roland
    So as I have stated in multiple other threads, I do not believe STAS WMI polling is working correctly, at least not for me. It tests ok when I use the test function, but the logs always show the wrong person identified when the STAS client attempts to…
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • STAS: 2 questions

    Bill Roland
    Bill Roland
    I installed the STAS agent and collector on my domain controller, setup the client and tested as much as I could and everything seems to test ok. I enabled STAS on the XG firewall, enabled User Inactivity, added the collector IP. So far so good. My…
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • STAS Suite Communication between DC's and Opening Ports questions... PLEASE HELP!

    Jarrod Goetz
    Jarrod Goetz
    Reaching out to kind, wonderful, HELPFUL community! (Buttering you guys up) :-) IN all seriousness... I am hoping ANYONE can help me out answering a few (Possibly dumb) questions that I seem to not be able to get answers for. (been waiting over a week…
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • Communication between DC's with STAS for SSO... NEED HELP!

    Jarrod Goetz
    Jarrod Goetz
    WARNING... Amature looking for guidance. :-) Environment: Standard network Windows Network 2 Active Directory Domain Controllers (for redundancy: BOTH Server 2008 R2) DC 1: 10.130.210.40 (FSMO Roles: PDC, RID pool master, Infrastructure master…
    • Answered
    • over 7 years ago
    • Sophos Firewall
    • Discussions
  • Authentication Problems... advice WANTED/NEEDED

    Jarrod Goetz
    Jarrod Goetz
    NEED HELP! Background: One-Man-Band IT guy (I do it all from Servers, Printers, PC, you name it... etc) So one of these "Jack of all trades, Master of none" type of guys. So needless to say, time is ALWAYS an issue, and I don't usually have time to constantly…
    • over 7 years ago
    • Sophos Firewall
    • Discussions
<>