• Configure Terminalserver Access with AD SSO authentication for multi-user hosts

    Christian Niemann
    Christian Niemann
    Hello, i would configure out Terminalserver Access with AD SSO authentication for multi-user hosts. I follow this article: https://docs.sophos.com/nsg/sophos-firewall/19.0/Help/en-us/webhelp/onlinehelp/AdministratorHelp/Authentication/HowToArticles…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • How to integrate Sophos FW with Azure AD

    Arya AM
    Arya AM
    We don't have have on-premise AD, need to integrate the firewall with Azure AD.\ We have IPSec tunnel connectivity between FW and AD.
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Linking Citrix with Sophos XG Firewall

    Chris GER
    Chris GER
    Dear Community. due to the current not so transparent information I am looking for a supported way to allow users of an RDP session to apply firewall rules based on "Active Directory Groups" basis. This is to prevent that user 1 from group 1 can access…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Add an Active Directory Server on Sophos XGS

    TobLai
    TobLai
    Hi support, I have a few questions on configure Active Directory authentication on my XGS. I have followed the guide here: Configure Active Directory authentication - Sophos Firewall When I open the VPN portal, I cannot login using my AD user…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Feature Request - AD Admin Groups

    paganoj2
    paganoj2
    I am not sure where else to request a feature, so I am going to request it here. It would be nice to be able to tie an active directory group to an XG Admin rule. This way all the users in that AD group can login to the XG Firewall with admin permissions…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • XGS Not Reading Attributes from AD

    JeffCooper
    JeffCooper
    Hi, I have active directory configured and it works. Users can log in to the user portal, vpn, and wifi. Yay! But, the attributes for the display name and email do not pull over from the AD Server. Example: The user logs in with username The name…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • how to sync AD servers on XGS

    Sophos User1175
    Sophos User1175
    hi all, under "configure > authentication > servers" ive added my domain controller to it but how do you manually "re-sync" it as ive just added another security group on my DC, ive added the group under group in sophos, called it the same name but…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • [Sophos XGS] User user@domain.local failed to login to Web Admin Console because of wrong credentials

    RaphaelleB
    RaphaelleB
    Hello, I'm posting a question because I'm having trouble setting up an administrator account generated by the AD for firewall access. My customer wants two of the AD users to be able to log into the firewall administration portal. I have tried…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Azure joined PC Heartbeat sending wrong username ?

    qi24
    qi24
    Hello, i am trying to implement SSO for Azure AD users to XG firewall by heartbeat. These are M365 Cloud Only Users . The Username is ex. john.doe@ourdomain.com . Heartbeat tells me that the user is johndoe, without the dot. I guess that this is…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Sophos Firewall users not joining my AD associated group

    Raphel prevost
    Raphel prevost
    Currently running a XG430 19.0. I am currently having trouble having my ad users being linked to the right group. I have created some security groups on my AD, I have synced them up with the sophos firewall using query like this (ou=x,dc=x,dc=.…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Web Filtering Not Detecting Users

    gr33ny
    gr33ny
    Hello A few days ago I started a trial of SFOS 18.5 as a Hyper-V VM, specifically to trial the Web Filtering feature. Our users log on to Server 2012R2 Remote Desktop Servers. I've followed the guides on the website to add an AD server along with…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • AD User Sync in XG

    gr33ny
    gr33ny
    Hello I am trialling an XGS VM running SFOS v18.5.3 MR3. I have setup AD Sync for users and groups. We will specifically be using AD groups to control web filtering. Must all users first navigate to the user portal before the XG will place them…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Active Directory Home Folder not mounted when using User authentication on firewall rule

    LHerzog
    LHerzog
    Is there a recommendation how to use the AD home folder feature when using Intercept-X, Heartbeat and User Authenticated firewall rules? The folder will not mount because it happens very early at the user logon on the endpoint and the user is not…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • XG AD Join for WebProxy SSO

    Marco Hald
    Marco Hald
    Hi, I'm currently evaluating the XG as a Replacment for our SG Cluster. My Problem is that the NTLM and Keberos Authentication is not working and I'm redirected to the Captive Portal. I tried to find a Logfile where the AD Join is logged but I ha…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • DCOM error in Active Directory when activating STAS

    Guilherme Silva1
    Guilherme Silva1
    Hello, I'm experiencing an issue related to DCOM error logs generated in Active Directory. I saw that they already have several records for other users, who faced the same problem with these logs, but in none found a solution or some conclusive answer…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Active Directory Authentication Traffic Coming In Through IPSEC Tunnel Being Dropped as IP SPOOFING

    Ronald Chinomona1
    Ronald Chinomona1
    My topology is as the image above. I have an IPSEC tunnel between the branch office and head office. I have an AD server at the head office site. I want to configure Active Directory authentication on the XG at the branch office using the AD server at…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Authentication problems and domain administrator

    Frank Schmidt1
    Frank Schmidt1
    Hi all, we have two XGS2300 running in active-passive-mode. Firmware is SFOS 18.5.2 MR-2-Build380. We have AD authentication configured and I have questions regarding the AD. In the Sophos documentation ( docs.sophos.com/.../index.html) there…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Active Directory Authentication with XG failing.

    Ronald Chinomona1
    Ronald Chinomona1
    I have two Sophos XG's both XG 230's and one Active Directory server. I have tried to integrate both XG's to the the AD server using the exact same parameter's. On one XG the integration is successful but the other refuses. It throws an error, Test connection…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • AD Server Authentication Drops over IPSEC S2S VPN

    Luke Jenions
    Luke Jenions
    Hi All, Recently one of our clients who have a server setup with a Sophos XG210 at their HQ have opened up a new branch that only has desktops and no servers. Machines are connected to a domain and a few of the users from head office have moved to the…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Secure Active Directory authentication with public CA and no AD CS

    rpa
    rpa
    Hi All, For secure AD authentication it seems Sophos advice is to install AD CS and create an AD CA on every AD server you use. Link: https://community.sophos.com/sophos-xg-firewall/f/recommended-reads/128222/sophos-firewall-how-to-integrate-active…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Cannot remove AD user

    EdmundSackbauer
    EdmundSackbauer
    Hi all, I cannot remove an AD user from the users tab. This user has no firewall rule attached, nor is any VPN enabled, and no web policy active. I am on version 18.5.2 csc.log shows this: MESSAGE Mar 01 17:40:19Z [worker:26569]: {"request":{…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • AD Authentication not working

    Arthur Marx
    Arthur Marx
    Hello, the AD authentication for the user portal and all other services is not working. I configured it according to this guide: https://docs.sophos.com/nsg/sophos-firewall/17.5/Help/de-de/webhelp/onlinehelp/nsg/sfos/learningContents/ConfiguringActiveDirectoryAuthentication…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • How to integrate authentication with Active Directory

    BobbyDigital
    BobbyDigital
    Hello World, Is it possible to configure Sophos XG to authenticate users for internet access once they sign in to their workstations? If not is it possible to force the browser to re-direct the user to the network authentication portal? Also, if…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Prevent AD user creation if not member of imported group

    Dan Williams
    Dan Williams
    Hi We have setup AD authentication on our XG and imported a "VPN Users" AD group on to our XG. The VPN Users group is assigned to the SSLVPN. If a user authenticates via the SSLVPN 2.1 client, a user is created in the "VPN Users" group on the firewall…
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • Sophos xg not creating a domain computer account when adding active directory authentication server. Kerberos sso not working.

    jarrod beebe
    jarrod beebe
    I have added Active Directory Domain controller to the servers list under authentication, imported groups, have users from AD, however, kerberos/ntlm doesnt work. I have made sure that SSO is enabled for the LAN interface and that the browser is using…
    • Answered
    • over 2 years ago
    • Sophos Firewall
    • Discussions
  • View related content throughout Sophos Firewall
  • More
  • Cancel
<>