• Add an Active Directory Server on Sophos XGS

    TobLai
    TobLai
    Hi support, I have a few questions on configure Active Directory authentication on my XGS. I have followed the guide here: Configure Active Directory authentication - Sophos Firewall When I open the VPN portal, I cannot login using my AD user…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Feature Request - AD Admin Groups

    paganoj2
    paganoj2
    I am not sure where else to request a feature, so I am going to request it here. It would be nice to be able to tie an active directory group to an XG Admin rule. This way all the users in that AD group can login to the XG Firewall with admin permissions…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • XGS Not Reading Attributes from AD

    JeffCooper
    JeffCooper
    Hi, I have active directory configured and it works. Users can log in to the user portal, vpn, and wifi. Yay! But, the attributes for the display name and email do not pull over from the AD Server. Example: The user logs in with username The name…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • SAML support for SSL VPN

    RahulAlexander
    RahulAlexander
    When will Sophos come out with Support for SAML? The majority of the players out there do support SAML2, why is Sophos dragging its feet.
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • STAS WMI Access Denied after Windows Update

    Carlos Cesario
    Carlos Cesario
    Hello all, We are facing several problems with STAS Logoff detection method - WMI after the lasted Windows updates mid of June. All computers are returned Access Denied when we execute WMI test over STAS. This is causing a big problem with discnnection…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • traffic not attributed to user using SATC with Sophos Server Protection

    Sophos22
    Sophos22
    to attribute traffic from remote desktop service host (windows server 2012 r2) to users we created a test implementation of SATC with sophos server protection. current issue: nearly all traffic is not assigned to user (username in log empty). but…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Authentication service is not working

    Farshid
    Farshid
    Hi Guys, Since I activated STAS on Sophos Firewall, sometimes for a small period of time, workgroup users that are using the captive portal, cannot login to the captive portal. In fact at this period, not only the captive portal but user portal, web…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • how to sync AD servers on XGS

    Sophos User1175
    Sophos User1175
    hi all, under "configure > authentication > servers" ive added my domain controller to it but how do you manually "re-sync" it as ive just added another security group on my DC, ive added the group under group in sophos, called it the same name but…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Authentication in Direct Proxy Mode

    Farzan Barouj
    Farzan Barouj
    Hi everyone, can Sophos perform user authentication in direct proxy mode? Captive Portal, SSO, Client Authentication and STAS are not meant. Since we have some applications that should be authenticated directly by Web Proxy. Through "basic user authentication…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • http websites ERR_CONNECTION_CLOSED when Advanced Threat Protection is turned on

    Koen VAN NEVEL
    Koen VAN NEVEL
    In case someone has symptons with http websites that get ERR_CONNECTION_CLOSED When we apply Advaced Threat Protection, websites which uses http protocol (internal and external) are often ERR_CONNECTION_CLOSED. These http connections work good for 0-20minutes…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • [Sophos XGS] User user@domain.local failed to login to Web Admin Console because of wrong credentials

    RaphaelleB
    RaphaelleB
    Hello, I'm posting a question because I'm having trouble setting up an administrator account generated by the AD for firewall access. My customer wants two of the AD users to be able to log into the firewall administration portal. I have tried…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Sophos XG 135 - Radius server - Test connection failed due to incorrect credential

    Jaroslav Horník
    Jaroslav Horník
    Hi, in our small company we are using Sophos XG 135. I'd like to use RADIUS server for my VPN connections to verify user as AD integration only allows PAP and Radius allows MSCHAP v2. However, for the love of God, I haven't been able to make it work…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Azure joined PC Heartbeat sending wrong username ?

    qi24
    qi24
    Hello, i am trying to implement SSO for Azure AD users to XG firewall by heartbeat. These are M365 Cloud Only Users . The Username is ex. john.doe@ourdomain.com . Heartbeat tells me that the user is johndoe, without the dot. I guess that this is…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Sophos Firewall users not joining my AD associated group

    Raphel prevost
    Raphel prevost
    Currently running a XG430 19.0. I am currently having trouble having my ad users being linked to the right group. I have created some security groups on my AD, I have synced them up with the sophos firewall using query like this (ou=x,dc=x,dc=.…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • When could the support for Google Authenticator and Authy come for Sophos VPN via 2FA?

    Jokx
    Jokx
    How is it possible that Sophos is still not supporting Google Authenticator, Twilio Authy or any other more wide-scale used 2factor authentication apps? It is claiming to be RFC-compliant and stating that those apps are not? Or what is the problem…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Problem with RED WiFi Authentication

    BeEf
    BeEf
    Hello I am using a RED 15w in my home office to connect to the company. When I connect it directly to the Fritz Box I am able to do so and the Authentication against RADIUS is working. WhenI connect through two devolo dlan550 and dlan650 this is…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Web Filtering Not Detecting Users

    gr33ny
    gr33ny
    Hello A few days ago I started a trial of SFOS 18.5 as a Hyper-V VM, specifically to trial the Web Filtering feature. Our users log on to Server 2012R2 Remote Desktop Servers. I've followed the guides on the website to add an AD server along with…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • AD User Sync in XG

    gr33ny
    gr33ny
    Hello I am trialling an XGS VM running SFOS v18.5.3 MR3. I have setup AD Sync for users and groups. We will specifically be using AD groups to control web filtering. Must all users first navigate to the user portal before the XG will place them…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • XG AD Join for WebProxy SSO

    Marco Hald
    Marco Hald
    Hi, I'm currently evaluating the XG as a Replacment for our SG Cluster. My Problem is that the NTLM and Keberos Authentication is not working and I'm redirected to the Captive Portal. I tried to find a Logfile where the AD Join is logged but I ha…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Radius Test Works but WiFi Won't Authenticate

    JeffCooper
    JeffCooper
    Hi, I'm setting up an XGS to authenticate wifi connections with WPA2 Enterprise to FreeRadius and OpenLDAP running on Ubuntu 20.0.4. I know the LDAP part works because my VPN connections work. Test Connection works in Authentication/Radius. So…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Authentication with Radius blocked by server 2019 firewall

    Sergio Renes
    Sergio Renes
    Hello, So I performed an in place upgrade on one of our domain controllers from 2012 to 2019, so that I don't have to worry about demoting and promoting blah blah blah. Before I upgraded the second DC I wanted to make sure our users can still authenticate…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Sophos XG: Using Azure MFA with an OATH Token Code for SSL VPN and User portal

    TonyMongiello
    TonyMongiello
    Good afternoon. I was able to set up my XG to accept Azure MFA for Portal and SSL VPN access using a Radius server. This seems to work brilliantly for users who use the Microsoft Authenticator app and push (Appreove/Deny) notifications. We have a handful…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Active Directory Authentication Traffic Coming In Through IPSEC Tunnel Being Dropped as IP SPOOFING

    Ronald Chinomona1
    Ronald Chinomona1
    My topology is as the image above. I have an IPSEC tunnel between the branch office and head office. I have an AD server at the head office site. I want to configure Active Directory authentication on the XG at the branch office using the AD server at…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Authentication problems and domain administrator

    Frank Schmidt1
    Frank Schmidt1
    Hi all, we have two XGS2300 running in active-passive-mode. Firmware is SFOS 18.5.2 MR-2-Build380. We have AD authentication configured and I have questions regarding the AD. In the Sophos documentation ( docs.sophos.com/.../index.html) there…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Sophos XGS Filtering (Unauthenticated vs User Groups / Login Portal)

    Greg Conway
    Greg Conway
    I've a setup where we need machines to have a certain amount of access to the web while not authenticated/before login. (for deployments, remote tools, Azure AD login attempts) but we also need for the machine to use the web authentication if they try…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • View related content from anywhere
  • More
  • Cancel
<>