In the last couple days I've been trying to give admin access to some users to manage Sophos firewalls via WAN accross multiple sites. However, I have to manually set the user type as "Administrator".
Manually setting 10 users or more accross more than…
Hello, we have 2 Sophos XG Firewall 430 in active-active HA mode. And I've configured some firewall rules to allow users in some AD groups to navigate. Ex.: I create a firewall rule for each AD group and create a specific WEB Policy for this AD group…
I have setup AD authentication to our XG for Sophos Connect, everything is working well (users auto import when connecting to the user portal and VPN connects no problems).
Is it possible to restrict User Portal/VPN Connections to a particular security…
Hello,
We need to implement AD Authentication into a client's environment, the AD Auth will be used for the Sophos Connect VPN client. Unfortunately, the client has 3 different UPN Suffixes (as they utilise 3 different email domains). Please advise…
Hi, i new with XG Firewall and want configure the autentication integration with Active Directory service.
I add correctly my AD but dont find the manual for Configure SF-OS to use AD Server Authenticacion, the link is broken and i want configure with…
Hey all. I have setup Active Directory integration and everything seems to be working fine from that aspect. Users are able to login to the user portal using their active directory credentials but when they try VPN the credentials do not work.
When…
Hi there,
I am currently testing an XG3300 model to replace our Untangle UTM and am running into issues with the AD Authentication and the Username that it records. We have an addtional UPN in our AD that we use as the logon name for students/staff…
I need to be able to integrate the XGS116 with Azure AD for web browsing so that active users/connections shows the correct username as opposed to N/A
I've currently set it to "Clientless" and added an IP address range so that browsing is attributed…
Good morning,
I'm relatively new when it comes to XG firewalls and have a simple question.
We currently have AD setup to sync to our firewall for IPSEC VPN authentication. Recently, a user had their name changed, to which we updated in active…
Hey,
We have a XG setup with AD authentication, and it seems to be pulling from the username from the "pre windows 2000" field instead of the normal username field. This means we have a customer with a long username (firstname.lastname) where the last…
I am looking for the possibility to set-up the following:
- Sophos XG integration with Azure Active Directory (perhaps LDAP or a software-feature from Sophos)
- Sophos XG authentication on the VPN client based on the Azure Active Directory account…
A customer has a major number of Apple MAC OS computers. The Devices are Active Directory joined, all have Sophos Endpoint Protection installed, the users log onte the computers with active directory credentials.
All the customer's locations have Sophos…
Hi everyone,
Im an IT ADMIN of an hospital, I've got issue with Firewall Rules that i want to apply to AD group membership.
The thing is that Rules Work Randomly for some users and don't work for another.
The rules AD group target is "Users…
Hi, we have a headoffice and three branchoffices. Headoffice uses XG135, branchoffice use 1 x XG 125 and 2 x XG 86
I have created VPNs with automatically created firewall rules. Each branchoffice uses the DefautBranchoffice Policy and the headoffice…
Hi,
we need to synchronize AD controllers via different sites.
The sites are connected with XG firewalls and site-to-site VPNS. Currently AD synchronisation does not work.
Do we need to configure additional rules for this? I was of the opinion that…
I am trying to delete a demoted DC in the XG Gui under Authentication - Servers but somehow this entry is not removed. I will get a message saying it will take time and I need to check the log viewer for the status.
Under Admin in the Log Viewer it…
Hi everybody,
I configured a new XG310 at our company and I have one topic left which I do not understand properly.
Before, we had a SG 310 with a webfilter based on about 10 different configuration for 10 Active Directory-groups. The users were members…
Good day Team, Please help, Is it possible to connect remote users who are working from home to connect via VPN to get Group Policy and Wsus updates, If this is possible how do we do it? Thank you.
Good Evening all,
Please I realized that after I installed my sophos appliance on my Network,my computers could not be able to locate the domain controller. What could be the Problem?Urgent answers Please.
I recently installed XG135w firewall with two additional access points. Since doing this, laptop users who connect via wifi are not authenticating on the AD Domain Controller and cannot print to a network printer.
Local LAN uses x.x.0.x Wifi is set…
Hi,
Anybody know where to start looking when importing users from AD is failing? The groups are importing fine, I have verified that there are users in the groups I am attempting to add, but the users never import.
Hello,
just looked into the authentication https://docs.sophos.com/nsg/sophos-firewall/18.0/Help/en-us/webhelp/onlinehelp/nsg/sfos/learningContent/AuthenticationConfigureActiveDirectory.html
This looks much less intuitive than on the Sophos SG and…
Hello Boys N Girls!
I have configured our AD server as an Authentication Server in Sophos XG. I have also created a group in AD called VPN users which syncs in XG. It seems that the group
is not functioning as I intend it to be. I also notice any…
Hi,
I try to be clearer as possible hoping this precious community can give me a solution to the problem.
SITE A
Zone LAN | 172.16.1.0/24
Zone LAN Gateway | 172.16.1.254 -> Firewall XG230
Zone WAN -> Internet
Zone MPLS [LAN] | 10.10.11.0…
In the ongoing saga of trying to clean-up our broken AWS S2S VPN tunnels this past weekend, we rebuilt them and finally got them working via BGP. Unfortunately now, we're left with a new problem. The XG itself can't authenticate with our AD DC's located…