• Authenticating AD Users and Match known Users

    Nad
    Nad
    Hello, We want Active directory users to get access to the internet through XG 230 Firewall running the latest Firmware. Current Setup: Using STAS on Windows Server All users were migrated from AD to Sophos Firewall rule created (attached…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • XG210 reaching AD server over IPsec

    Tony Atkins
    Tony Atkins
    Under Configure > Authentication, I’ve added an AD server that is reachable over an IPsec connection, however I have been unable to have a successful test. Details: The Sophos XG210 is at 10.2.30.1 The IPsec site-to-site connection name is IPSECAD The…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • IPSec VPN setup with Active Directory

    Downsideup
    Downsideup
    Hi, I have set an IPSec VPN connection and successfully connected using a local user account. Problem is I am unable to get it to connect using an AD login. The errors is "User Authentication Failed" I have a SSL VPN connection that does successfully…
    • Answered
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • LDAP Auth problem over IPSec

    wit128bdolar
    wit128bdolar
    Hi, We have a problem randomly happening. Users are using to AD Auth for SSLVPN. And sometimes gives an error. When I was check the SSLVPN application; "auth error". After then was check the Sophos XG and gives a same error. If i do manually disconnect…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • General question about AD sync with XG

    itguy318
    itguy318
    In my environment i have enabled SSL VPN on my XG. Authentication is through AD. I have an AD security group which synchronises with XG. I add AD members to this group and SSL VPN access is granted to the users of this AD security group. I have some…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Recipient Verification Active Directory

    Alexander Liebert1
    Alexander Liebert1
    Hello, we are Using Sophos XG 230 on SFOS 18.04 MR-4 If i try to set up Recipient Verification to AD nothing happens. Every Mail is redirected to the Exchange 2016. It does not Check against additional smtp Addresses or anything. Does anybody…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Sophos XG s2s vpn - offiste Domain Controller for authentication ssl vpn

    genbreit
    genbreit
    Hello all, we have a nearly exact setup which is described in the below link. So we have s2s ipsec vpn tunnel between two sophos XGs. https://support.sophos.com/support/s/article/KB-000035830?language=en_US We did this configuration to be able…
    • Answered
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Sophos XG210 MR4 OTP Token with AD authentication - error 17705 and 17711

    Stephan Bückert
    Stephan Bückert
    Dear community, i got some problems with Sophos XG210 MR4. I created a new AD user for testing, activated OTP and assigned the testuser to it. I got a new hardware token i integratet and assigned to the testuser. Now i done some testing, testuser…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Sophos AD Integration - Authentication proble

    Marcelo Laurenti
    Marcelo Laurenti
    Hello Team, I´m new in the community, I Have a Sophos XG 330 productive one with SFOS 17.5.12 MR-12 and another Sophos XG 330 for backup SFOS 18.0.4 MR-4 both with AD integration working for SSO and L"TP/IPSEC VPN access but when an AD user change the…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Active Directory failed authenticating users of subdomains

    Alex Ahmadi
    Alex Ahmadi
    Hi all, I have a Sophos XG device integrated with Active Directory. My Active Directory has 15 sub domains in my network. This works as intended but we have some trouble with the AD connection. We have a root-domain and 15 subdomains. We have a global…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Radius test failed

    Josh Rogalski
    Josh Rogalski
    I am setting up Sophos XG Wireless for the first time, and having some trouble with Radius. I have a ticket open with Sophos support, but wanted to reach out to the community to get their take on the issue. I followed the instructions by Sophos for setting…
    • Answered
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • User can't log in with STAS - XG 210 SFOS 17.5.14

    Jeysel Benetti Bueno
    Jeysel Benetti Bueno
    I have a problem that is bothering me for a couple of weeks now, we have an Windows Server 2012 R2 Standard with STAS SSO installed and configured, everything works fine(we have 50~ users), except for one specific user, that simply doesn't authenticate…
    • Answered
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Remove authentication server from XG

    RalphScharping
    RalphScharping
    Hi, I am new to XG and playing in a test environment. So far I have been successful in getting everything I have tried up and running. Through some hiccups I have caused by messing with stuff, I have eliminated the domain controller that I had added…
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Issue moving firewall to firewall group in Sophos Central

    apijnappels
    apijnappels
    We moved a firewall into a firewall group in Sophos Central and upon synchronizing it will give the following Error: Firewall Transaction Details ID : 1 | STATUS: FAILED | EVENT : UPDATE AD server \"{srvname}\" could not be updated Error:: servertype…
    • Answered
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • AD Users cannot log into Sophos Portal

    Ashish Gupta
    Ashish Gupta
    I just configured New AD Server windows 2019. I configured users on sophos for vpn remote access. For downloading the client certificate , when I try to logon to Sophos portal it fails On windows side i can see successful log on and immediated…
    • Answered
    • over 3 years ago
    • Sophos Firewall
    • Discussions
  • Domain authentication - admin PW with special characters

    AOP
    AOP
    Good Day everyone! we have trouble with some XG Firewalls. All administrator accounts with some specific special charactes like ' arnt working anymore. It happened on Firmware 17.5.2 and is still buggy on 18.0.3. So no new users are able to authenticate…
    • over 4 years ago
    • Sophos Firewall
    • Discussions
  • Cannot access AD even after connecting through SSL VPN

    Shaan Ahmed
    Shaan Ahmed
    SSL VPN on XG Firewall is authenticated and accessed using the AD user credentials, but once connected, cannot access internal resources such as file server, cannot even ping the AD from within
    • over 4 years ago
    • Sophos Firewall
    • Discussions
  • User duplicates being created constantly, not being read from AD.

    MSCIT
    MSCIT
    Hi there, I have just stumbled up on an issue - on our XG a handful of users (not all) are being created as what looks like "local" users on the XG. Normally users are STAS'd and compared to their AD account and registered with their "account@account…
    • Answered
    • over 4 years ago
    • Sophos Firewall
    • Discussions
  • NTLM and Kerberos troubleshooting

    CraigLloyd
    CraigLloyd
    I am troubleshooting AD single sign-on with my XG Firewall V18 MR3 I have found this in the help section, please can someone explain what the Firewall Rule mentioned in the Red Box in the screenshot below should consist of? I have no rules which allow…
    • over 4 years ago
    • Sophos Firewall
    • Discussions
  • AD password change in XG VPN client

    Dan Williams
    Dan Williams
    Hi We are getting lots of negative feedback after deploying Sophos XG firewalls in place of Cisco ASAs as the VPN client doesnt seem to support AD password change prompts when using RADIUS backend for auth. Is there any way in which AD password expiries…
    • over 4 years ago
    • Sophos Firewall
    • Discussions
  • SSL VPN - Changing Authentication from AD to Radius (Duo MFA)

    Alex Ghiorghies
    Alex Ghiorghies
    Hello, If I change the Authentication for SSL VPN clients from Active Directory to Radius, are the users required to re-download the SSL VPN config or client from the user portal? Thank you, Alex
    • Answered
    • over 4 years ago
    • Sophos Firewall
    • Discussions
  • STAS and DC

    AlessandroBlasi
    AlessandroBlasi
    Hello Everybody, We are moving from UTM to XG, now I'm the testing phase, and I'm having some issue with STAS and AD user authentication. For example, for a generic AD user, Authentication works occasionally, sometime everything run's well other times…
    • over 4 years ago
    • Sophos Firewall
    • Discussions
  • SSL VPN single mistyped password causes AD lockout

    Josh Rogalski
    Josh Rogalski
    We have SSL VPN connected to our Active Directory domain controllers. We found that after configuring the VPN our users were routinely locking out their AD accounts. This is happening after a single mistype of a password on the SSL VPN. I have researched…
    • over 4 years ago
    • Sophos Firewall
    • Discussions
  • AD Integration issue with long domain name, possible bug ?

    Edmond Egan
    Edmond Egan
    We have a case open for this with support but wondering if anyone else can shed any light as progress seems to have stalled. We have a customer with a long AD domain name e.g. companydomain.companywebsite.co.uk and have just installed an XG230 + SSL…
    • over 4 years ago
    • Sophos Firewall
    • Discussions
  • Is Sophos IPS able to detect CVE-2020-1472 based attacks?

    LHerzog
    LHerzog
    CVE-2020-1472 Zerologon is about to go into the wild. Is XG able to detect those logon attacks with IPS?
    • Answered
    • over 4 years ago
    • Sophos Firewall
    • Discussions
  • View related content throughout Sophos Firewall
  • More
  • Cancel
<>