Hi all, I have setup a 210 with XG and STAS, I want to sync the users from the AD groups, I follow some guides but I can't see any user in any groups. I read some posts about this and they say all the users had to login into user portal so the XG…

We can achieve AD user authentication in XG two way NTLM and STAS. My question is which method is best? Thanks Iffi

We currently are utilizing STAS for transparent authentication to our Sophos XG firewalls. The issue we notice, is that all users are authenticated with their IPv4 address in STAS. Has anyone been able to transparently authenticate IPv6 and IPv4 users…

Hello community! I'm trying to set up Sophos XG in combination with a Novell eDirectory server in a virtual testing environment, as I plan to migrate our customers who are currently using Novell eDirectory and other firewall solutions to a combination…

Hello everyone, I'm having a big problem with stas authentication. I had the system configured and perfectly running until some weeks ago, and then, without changing anything and with no apparent reason, it has simply stopped working. i have this configuration…

Hello, i have an XG in a branch office with a VPN tunnel to the main office with any-any rules both ways, main office has a UTM with the AD servers, stas is already configured there. the fixes for the broken xg net to net vpn funcitonality are also…

I installed the STAS agent and collector on my domain controller, setup the client and tested as much as I could and everything seems to test ok. I enabled STAS on the XG firewall, enabled User Inactivity, added the collector IP. So far so good. My…

WARNING... Amature looking for guidance. :-) Environment: Standard network Windows Network 2 Active Directory Domain Controllers (for redundancy: BOTH Server 2008 R2) DC 1: 10.130.210.40 (FSMO Roles: PDC, RID pool master, Infrastructure master…

NEED HELP! Background: One-Man-Band IT guy (I do it all from Servers, Printers, PC, you name it... etc) So one of these "Jack of all trades, Master of none" type of guys. So needless to say, time is ALWAYS an issue, and I don't usually have time to constantly…

Hi there, I'm trying to set up STAS on my domain controller, and having a few issues. The STAS Agent and STAS Collector are working fine, and testing okay, but when I test connectivity to the Sophos device, I get a "Test Connection failed." popup…

I have 8 different XG firewalls running 15/MR3. I can connect to the ssl vpn on all of them but 2. Those two are different from the others as they are running STAS. On both of those appliances authentication is configured for local, then AD authentication…

Hi, I mount a VirtualLab with VM's with XG v16 on my workstation 3 VM's UTM, Windows 7 Pro 64bit and Windows Server 2008 R2 64bit... XG v16 with two interfaces LAN VMnet5 172.16.16.16 WAN VMnet2 (NAT) DHCP Windows 7 Workstatin LAN VMnet5 gets…

I have imported my groups from the AD in my XG environment, but when I try to login I just get login errors. When I look at the logs it seems like XG can't get the information from the AD. At the moment I dont know what the issue might be. The last…

Hi All, There's been an issue identified where as if a user has special character in their sAMAccountName, STAS and the XG Firewall will fail the authentication because a user object can't be created because of the special character. I don't consider…

Hello everybody, I configured a Sophos XG210 in bridge mode. Right now, I’m trying to configure the Single Sign On using STAS. I’m quite familiar with STAS implementation with over 10 clients configured successfully, but this installation is the first…

We're trying to switch over to XG from UTM Home 9.4 after encountering an unresolvable problem which requires us to discontinue use of the product. I decided XG Home might be a good alternative... Until it became apparent that it can't seem to do an…

We have recently migrated from cyberoam. I had CTAS configured before and then re-deployed STAS. None of my firewall rules use Identity, however for about 2 minutes out of every 30-45 minutes my users have no connection to any other VLAN or LAN on the…

Hi! I have STAS running and it works quite well for my "Domain-Admin" user. But now I've created a new AD user who belongs to the group "Domain-Users". Unfortunately, this user always gets mapped to "Open Group" instead of the correct group ("Domain…

Hello, I set up the STAS SSO mechanism within a WIndows AD domain. It works, but most users belong to more than one group. I created specific AD groups to manage access through the firewall, sothat it is would be sufficient to change user AD group membership…