Hello, I have two questions:
Is it safe to upgrade the firmware from SFOS 16.05.3 MR-3 to SFOS 16.05.7 MR7 ? I'm using STAS and I've been told that the MR7 firmware has some issues with those who use STAS.
And I have two XG210 in HA mode (active-passive…
Hello everyone,
I have serious issues with deploying STAS in a customers environment. I have installed the STAS agent in several environments according to KB123156 and haven't had any problems yet but on this system something seems to be wrong...
…
Hello
Plz how can i bloc acces to the internet for NON-Aactive directory, or Local User.
I already import my AD user and make the policy for only AD User, and check the " Match known users is selected"
But i see that all PCs from the local subnet…
Hi
I setup a new XG115 and added the AD Server with test connection was successful. Also I installed STAS but I it seems have to have an issue left since I can't login with my windows users.
My Server has the IP 192.168.109.211
My XG115 192.168…
Hi
I setup a new XG115 and tried to setup the STAS. For that I tried to follow this guide: https://community.sophos.com/kb/en-us/123156
Unfortunately, in the part for the firewall configuration it seems there are some commands missing:
Step…
Hi all,
I did configure STAS on a single DC.
Communication between XG and DC it's working but some users didn't show up in the firewall. This means the firewall rules don't apply to him.
AD Server: 128.128.128.28
XG appliance: 192.168.50.1 …
I have problem with STAS.
When I enable the option "Logoff Detection" (follow this article: community.sophos.com/.../123020) in a few minutes all users are disconnected from firewall ("current users"). It is just possible to reconnect after each user…
Hi everybody, i would like to know if it is normal to see in log that users authenticating via SSO continously logs in and out. I have this behavior in my network and sometimes its annoying, captive portal appears to som users and they are complayng.…
Hi all,
I have setup a 210 with XG and STAS, I want to sync the users from the AD groups, I follow some guides but I can't see any user in any groups.
I read some posts about this and they say all the users had to login into user portal so the XG…
This is a set up question.
I have two UTM on different sites, A and B. Each site has a Windows 2016 server DC and STAS is working locally. The sites are connected to each other via Site2Site VPN.
I am trying to achieve that a logged in user is registered…
I have recently deployed in the network. Our users are having issues getting proper access to network resources when browsing from the terminal server. What could be causing this? Can I apply User/Network rules to a terminal server? or Logins to Terminal…
Hey guys,
I've configured STAS in an AD environment. This AD environment has 5 DCs so I setup 4 DCs as the agents and 1 as the collector.
Everything works just fine except only 1 user are always missing from the live users on XG and Collector…
We currently are utilizing STAS for transparent authentication to our Sophos XG firewalls. The issue we notice, is that all users are authenticated with their IPv4 address in STAS. Has anyone been able to transparently authenticate IPv6 and IPv4 users…
As the title says, is it possible to have STAS enabled for monitoring but still allow access to non-domain users to the internet without getting a captive portal page?
And if this is possible, how should this be done rule wise?
I have a perplexing issue. I have STAS setup and working, all users are logged into the XG 210 firewall by STAS, except for one. If I delete him from the "users" table the next time he logs in, it works. But after he logs out and attempts to log back…
Hello community!
I'm trying to set up Sophos XG in combination with a Novell eDirectory server in a virtual testing environment, as I plan to migrate our customers who are currently using Novell eDirectory and other firewall solutions to a combination…
Hello everyone, I'm having a big problem with stas authentication. I had the system configured and perfectly running until some weeks ago, and then, without changing anything and with no apparent reason, it has simply stopped working. i have this configuration…
Hello,
i have an XG in a branch office with a VPN tunnel to the main office with any-any rules both ways, main office has a UTM with the AD servers, stas is already configured there.
the fixes for the broken xg net to net vpn funcitonality are also…
Subject says it all; if you enable the STAS system for SSO, should you disable NTLM authentication? I am seeing what appears to be collision caused by having them both enabled, I see the SSO client get logged out by the firewall whenever the NTLM login…
So as I have stated in multiple other threads, I do not believe STAS WMI polling is working correctly, at least not for me. It tests ok when I use the test function, but the logs always show the wrong person identified when the STAS client attempts to…
I installed the STAS agent and collector on my domain controller, setup the client and tested as much as I could and everything seems to test ok. I enabled STAS on the XG firewall, enabled User Inactivity, added the collector IP. So far so good.
My…
Reaching out to kind, wonderful, HELPFUL community! (Buttering you guys up) :-)
IN all seriousness... I am hoping ANYONE can help me out answering a few (Possibly dumb) questions that I seem to not be able to get answers for. (been waiting over a week…
WARNING... Amature looking for guidance. :-)
Environment:
Standard network Windows Network
2 Active Directory Domain Controllers (for redundancy: BOTH Server 2008 R2)
DC 1: 10.130.210.40 (FSMO Roles: PDC, RID pool master, Infrastructure master…
NEED HELP! Background: One-Man-Band IT guy (I do it all from Servers, Printers, PC, you name it... etc) So one of these "Jack of all trades, Master of none" type of guys. So needless to say, time is ALWAYS an issue, and I don't usually have time to constantly…