• Sync with AD

    Vânesson Santos
    Vânesson Santos
    Dear, I would like some help on how I can do this or if there is a way to do something in the following case: We have a client where his firewall is linked to AD, within his internal network, there are some employees who have access to VPN when they…
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • Member of Active Directory Protected Users Group: No Webadmin login possible

    Jürgen Walterscheidt
    Jürgen Walterscheidt
    Hi there, I found a four years entry here in the forums where somebody asked why a member of the protected users group in active directory is not able to login to webadmin of the Sophos XG. This issue seems still to be existing. The protected users…
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • Wifi Router internet goes down if a AD user tries to access internet via a WIFI router whose IP address is added to the Firewall rule allowed list

    Muhammad Safdar
    Muhammad Safdar
    Hi Sophos community, I'm having a issue for my Wireless router. I have created two rules: 1. Rule 1 for AD users to WAN In the above rule internet is allowed once user is authenticated via AD. Everything is working fine. 2. Rule 2 for Wifi router…
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • User user@mydomain.local failed to login to VPN through AD authentication mechanism because of access not allowed

    Célio Rodrigues
    Célio Rodrigues
    Hello, I dealing with this problem while trying to use external authentication via AD to manage ipsec user connections, i have created a group ou my AD for the users i want to permit access, on the fw on remote access i have give permission to this…
    • 8 months ago
    • Sophos Firewall
    • Discussions
  • SSL VPN || AD SYNC

    satyabrata bastia
    satyabrata bastia
    Hi, Sophos is synchronized with Active Directory (AD), and when we disable a user's profile in AD, they should no longer appear in the Sophos user list. However, I noticed that some disabled users are still showing up in the Sophos user list. My question…
    • Answered
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • Bind fw rules to user - Recommendation for AD-Sync?

    bmu
    bmu
    Hi there, i'm securing our company network a little bit more and want to use the "Match User"-Feature within the fw rules. We're running a central Sophos XG135 cluster an a bunch of branch offices, which are connected via pfSense and IPSec-tunnels…
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • Sophos Firewall: Create multiple AD Server entities in SFOS for multi domains (Trusted Domain User)

    Shawn Adams
    Shawn Adams
    This seems not to work anymore Sophos Firewall: Create multiple AD Server entities in SFOS for multi domains When I try to do the last step I get the message "Please enter a valid server address in field "Server IP/domain"." I need to somehow…
    • Answered
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • Sophos XG 20.0 FW - VPN PPTP with Windows Bult-in Client

    CK2024
    CK2024
    Hello, we try to work with the PPTP Client vom Windows 10/11 and it doenst works with AD Users. If i try a local user from the Firewall works everything fine, but on AD Users i receive an error that the credentials are wrong. I have tried with DOMAIN…
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • SFOS 20 Entra AD SSO For Captive Portal/VPN Not Working

    colly72
    colly72
    I;m following the few videos that I can find about how to set up Entra AD SSO for captive portal and VPN but I can't seem to get it working. Are there any step by step instructions that I can follow, other than the published Sophos videos, which seem…
    • 11 months ago
    • Sophos Firewall
    • Discussions
  • Adding new firewalls

    open_admin
    open_admin
    I am adding a new domain controller to our domain and am having trouble adding it to the authentication servers in Sophos. The server is active and working as expected and I've checked all of the same firewall settings as our old DCs. The only difference…
    • 11 months ago
    • Sophos Firewall
    • Discussions
  • how to avoid domain authentication on allowed router IP?

    Moeed Aziz
    Moeed Aziz
    Hi, I have Sophos Home edition on a machine, which use AD authentication in user-based rules to allow internet. In addition to that we have some IP based rules as well for some devices that cannot be joined (or we don't want to join them) to the domain…
    • 11 months ago
    • Sophos Firewall
    • Discussions
  • XGS 19.5.3 Build 652 - AD Group members lost

    Ingo Buyny
    Ingo Buyny
    Hello, i am quite new to the XGS Appliance, coming from the UTM. We still facing a lot of problems since the migration, one of that is the user authentication for SSO. The import of the users and the ad groups worked well and most of the useres…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Nutzer aus AD einlesen auf XGS 2100 ?

    Carsten Bußmann
    Carsten Bußmann
    Moin, wir sind dabei, unsere XGS 2100 zu konfigurieren / Termin mit Partner steht noch aus, ich les und denke mich grad ein. Kann man User aus dem AD auslesen und automatisch angelegt bekommen ? Der AD Connect steht, ich kann auch Gruppen von Usern…
    • over 1 year ago
    • Sophos Firewall
    • German Forum
  • Sync AD users to Sophos firewall

    Emad Al-qwassmi
    Emad Al-qwassmi
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Problema de Importación

    Xpertus SOC
    Xpertus SOC
    Buenas tardes Grupo sabrán porqué no me deja seleccionar en el ADDGROUPS, estará mal un Dominio?
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Servers using insecure plaintext connections: 1

    Vaibhav Patil
    Vaibhav Patil
    Hi everyone, We have added AD server with sophos xg 230. And it is showing that "Servers using plaintext connection: 1" in Authentication > Servers . As you can see above. Please tell me solution. Regards, Vaibhav
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • SFOS FIrewall and AD authentication

    Jay23
    Jay23
    Hi Everyone, Sophos UTM user making the move to SFOS firewall and need some help. I am having a diffiecult time getting the settings right to authenticate to Active directory on a new Sophos Firewall. With the Sophos UTM software you entered the Bind…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Authentification Search Query

    Dominik Gidaszweski
    Dominik Gidaszweski
    Hallo zusammen, ich würde gerne den Search Query für die Authentifizierung abändern. Momentan zeigt die auf die OU "Benutzer". Ich würde dies nun gerne auf die neue OU VPN setzen wo es eine Gruppe mit allen VPN Nutzern gibt. Wenn ich dies mache…
    • over 1 year ago
    • Sophos Firewall
    • German Forum
  • how many failed attempts does ssl vpn query the AD on one attempt ?

    Chris Conway
    Chris Conway
    I notice that even though we only have 2 dc's, our failed password threshold is at 6 tries before locking but it seems people get locked out after only 1 failed attempt. is this manageable ? Thanks!
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Re-import users from Active Directory

    Fizzle
    Fizzle
    Sophos XGS 4500 19.5.3 Before I fully understood how the Sophos/AD import and integration worked with respect to users, groups, and authentication for SSL VPN I set up AD search scopes to import users. I didnt understand that Sophos would automatically…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Live users disappears in few minutes- STAS

    Ramy Sayed1
    Ramy Sayed1
    Hello I have problem using WMI as logoff detection method on STAS and most of live users disconnect after few minutes from logging to any device I use STAS on DC and Additional DC and I opened all needed ports for DCs and users devices through group…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Firewall AD Authentication Failed

    tomrgsd
    tomrgsd
    We are experiencing an issue with authentication failures due to username not being retrieved a full username with the Heartbeat Auth Client. If I login via web client it authenticates properly. For example user1@domain.local. The logs are showing it…
    • Answered
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • Sophos Firewall: Active Directory (AD) Users Getting Locked After Multiple Failed Attempts on SSL VPN with MFA Enabled

    Mayur Makvana
    Mayur Makvana
    Disclaimer: This information is provided as-is for the benefit of the Community. Please contact Sophos Professional Services if you require assistance with your specific environment. Table of Contents Overview Background Configuration…
    • over 1 year ago
    • Sophos Firewall
    • Recommended Reads
  • Sophos XG V18 - User from Active Director Server not in same group when synced to firewall.

    phong nguyen
    phong nguyen
    Hello everyone, I have configured user authenticate via Active Directory. I synced groups on AD to firewall already, AD's user can login to firewall user portal. Problem is if that logged in user in default OU such as "User" or "Computer" on AD, synced…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • AD user password expiry blocks VPN access

    Steve Abbott
    Steve Abbott
    We have a local DC with our domain users set up. No more than about 10 users. We use sophos XG firewall for some users to access local resources using the sophos VPN client from a PC, with 2FA (using a QR code initially to set up) Users in the sophos…
    • over 1 year ago
    • Sophos Firewall
    • Discussions
  • View related content from anywhere
  • More
  • Cancel
<>