• sophos xg home to AD password/group synchronization

    Moeed Aziz
    Moeed Aziz
    Hi, I have Sophos home deployed in our network, with AD groups synced-in from AD server for user-based internet access. For a month or so now, when any users changes their domain user password, SSO (single sign on) does not work for them and they…
    • 5 months ago
    • Sophos Firewall
    • Discussions
  • SSO RADIUS for vpn portal & vpn connect client

    Mathieu Rojo
    Mathieu Rojo
    Hi, My client already use a radius server for authenticated they users. Actually, only the switch contact the radius. I would like to do the following but I don't know if it's possible: Est-il possible de configurer le portail VPN pour que l'utilisateur…
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • LDAP AD Sync - force new sync

    MM the Admin
    MM the Admin
    Hey, we have been using an ldap connection to sync usrs from our local AD to our XGS appliance. Since we're migrating, we have changed the UPN and mailaddresses of all users in our AD. Sadly sophos doesn't get that, therefore rules that match…
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • Windows Terminal Server User Syncronisation

    ChrisV
    ChrisV
    Guten Morgen zusammen, wir versuchen die AD User mit unserer Sophos XGS zu syncronisieren. Ziel ist es, die User die sich am TS anmelden auch auf der FW zu sehen, damit wir die Aktivitäten überwachen können. Was wir gemacht haben: https:/…
    • Answered
    • 6 months ago
    • Sophos Firewall
    • German Forum
  • Sophos Firewall: Authentication Multi UPN configuration

    GiuseppeI
    GiuseppeI
    Disclaimer: This information is provided as-is for the benefit of the Community. Please contact Sophos Professional Services if you require assistance with your specific environment. Table of Contents Overview UPN Configuration Active…
    • 6 months ago
    • Sophos Firewall
    • Recommended Reads
  • AD SSO over Kerberos not working

    Brazzo
    Brazzo
    Hello, I have done a setup with a clsuet of 3300 appliances. For authentication I have configured an active directory domain controler, joined the domain, imported the groups and activated AD SSO on the zones. In Auth-Log the NTLM and Kerberos channel…
    • Answered
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • NTLMv1 and SMBv1 still required for AD SSO on XGS6500 with 19.5.4 SFOS ?

    CiroDanise
    CiroDanise
    Hello, We use SSO AD Authentication (Windows Server 2022) for web clients in standard proxy mode and it works. As far as I know, for the XGS to join the AD, NTLM and SMB are required to works. Now we're in the process of hardening our AD and want…
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • Sync with AD

    Vânesson Santos
    Vânesson Santos
    Dear, I would like some help on how I can do this or if there is a way to do something in the following case: We have a client where his firewall is linked to AD, within his internal network, there are some employees who have access to VPN when they…
    • 6 months ago
    • Sophos Firewall
    • Discussions
  • Troubles with tracking activities of a user

    ThoFe
    ThoFe
    Dear Community, i’m forced with tracking some users behavior, especially if and which private sites they access from their company PC (i.e. youtube, etc.) I stumbled upon some problems though. My general understanding is, that the first thing to…
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • Member of Active Directory Protected Users Group: No Webadmin login possible

    Jürgen Walterscheidt
    Jürgen Walterscheidt
    Hi there, I found a four years entry here in the forums where somebody asked why a member of the protected users group in active directory is not able to login to webadmin of the Sophos XG. This issue seems still to be existing. The protected users…
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • Wifi Router internet goes down if a AD user tries to access internet via a WIFI router whose IP address is added to the Firewall rule allowed list

    Muhammad Safdar
    Muhammad Safdar
    Hi Sophos community, I'm having a issue for my Wireless router. I have created two rules: 1. Rule 1 for AD users to WAN In the above rule internet is allowed once user is authenticated via AD. Everything is working fine. 2. Rule 2 for Wifi router…
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • Setting up Google LDAP

    Antony Rappai
    Antony Rappai
    Hi, can anyone point me in the right direction on how i can setup Google LDAP on the Sophos Firewall for user login and identification? I have setup the LDAP on the Google Workspace, but i need to how to map the fields to Sophos Thanks Anto
    • 7 months ago
    • Sophos Firewall
    • Discussions
  • SFOS AD SSO not really working

    Steve Weißflog
    Steve Weißflog
    Hello, we are migrating a lot of customers from UTM to XGS/SFOS. With UTM the customers used AD SSO for authentication for web protection (different AD-groups and webfilter profiles). With UTM we never had any issue with AD SSO! Now with SFOS we ALWAYS…
    • 8 months ago
    • Sophos Firewall
    • Discussions
  • LDAP/keberos for proxy auth - multiple domains

    Richard Priest2
    Richard Priest2
    Is it possible to configure SFOS to authenticate different users on different domains? My work has merged with another company. Network wise the two are joined. I've successfully added the 2nd domain server and a test connection is successful. …
    • Answered
    • 9 months ago
    • Sophos Firewall
    • Discussions
  • Unidentified Network - Kerberus Auth Problem only with SSL and without NETBIOS

    Steve Reschke
    Steve Reschke
    Hello we are disbled NETBIOS / WINS for our Domain Network on client side. Since we did this we have problems to authentificate on our domaincontroller through VPN SSL. With VPN IPSsec all is fine. Also in LAN all is fine. Both, SSL and IPSec using the…
    • 9 months ago
    • Sophos Firewall
    • Discussions
  • XGS 107 Live user Un detected

    Philips Kasirye
    Philips Kasirye
    Dear community, A deployed XGS 107, with the following configuration; Ports LAN and WAN Connected Gateway firewall -Routing & DHCP Enabled. Fails to show Live users ( data) whereas Live Connections are detected in the Network traffic. …
    • 9 months ago
    • Sophos Firewall
    • Discussions
  • Remove an XG450 group member

    Ishaq E
    Ishaq E
    how do I remove a group member from the Sophos firewall authentication group? I can add members to the group and view group members, but I unable to delete.
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • Sophos XGS AD SSO ""Cannot initialise Kerberos authentication with DOMAIN"

    Leon Pohl
    Leon Pohl
    I hope that I might be able to find an answer to my problem here. I have joined the Sophos XGS to the domain. The AD object looks good. The Sophos XGS name is configured with FQDN. Unfortunately I get this error message for Kerberos: "Cannot initialise…
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • STAC implementation smashing auth logs with failures for 'system' account

    Stuart James
    Stuart James
    We're using STAS and wanting to implement SATC for Terminal Servers Followed the documentation below, but now the system account is smashing the Authentication log with failures https://docs.sophos.com/nsg/sophos-firewall/20.0/Help/en-us/webhelp/onlinehelp…
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • AD SSO - Cannot establish NTLM authentication channel with xxx

    Stuart James
    Stuart James
    Getting hundreds of these in the log for Authentication: Cannot establish NTLM authentication channel with Have read through all the other forum posts and they say to disable AD SSO in Device Access, but it's already…
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • Issue Configuring Azure AD Connect for Sophos Firewall Admin Console

    abdellah adil
    abdellah adil
    Hello Sophos Community, I'm currently facing an issue while attempting to configure Azure AD Connect for the Sophos Firewall Admin Console, following the tutorial provided here . Despite meticulously following each step outlined in the tutorial, I…
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • Bind fw rules to user - Recommendation for AD-Sync?

    bmu
    bmu
    Hi there, i'm securing our company network a little bit more and want to use the "Match User"-Feature within the fw rules. We're running a central Sophos XG135 cluster an a bunch of branch offices, which are connected via pfSense and IPSec-tunnels…
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • NPS Server in Azure for MFA

    Lars86
    Lars86
    NPS is working perfect with Sophos MFA via onpremise VM try to migrate it to Azure vm but keep getting error: A RADIUS message was received from the invalid RADIUS client IP address 169.254.0.1 on the new NPS server. Any Ideas?
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • Sophos Firewall: Create multiple AD Server entities in SFOS for multi domains (Trusted Domain User)

    Shawn Adams
    Shawn Adams
    This seems not to work anymore Sophos Firewall: Create multiple AD Server entities in SFOS for multi domains When I try to do the last step I get the message "Please enter a valid server address in field "Server IP/domain"." I need to somehow…
    • Answered
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • Sophos XG 20.0 FW - VPN PPTP with Windows Bult-in Client

    CK2024
    CK2024
    Hello, we try to work with the PPTP Client vom Windows 10/11 and it doenst works with AD Users. If i try a local user from the Firewall works everything fine, but on AD Users i receive an error that the credentials are wrong. I have tried with DOMAIN…
    • 10 months ago
    • Sophos Firewall
    • Discussions
  • View related content from anywhere
  • More
  • Cancel
<>