Hi all, I actually troubleshooting AD-user login to user portal.
System is XGS2300 actually patched. I setup AD user to be able to use SSL following this article https://support.sophos.com/support/s/article/KB-000038367?language=en_US .
I did that…
Sophos XGS - User Authentication with BYOD
we have a network setup in which domain-joined users authenticate via Stas.
However the challenge is with BYOD users - as of now we have wireless setup in which a radius server authenitcate BYOD users via…
Good day,
Has anyone been successful in implementing certificate based Radius authentication for wireless clients.
My setup includes XGS, APX AP that supports Radius authentication. The kb's i have come across mentions about using PEAP. Will be good…
Hello,
Q: How can we add / change E-Mail-address for ALL AD users? "Purge AD Users" does not update that attribute.
We need this for quarantine digests. Not any user has the need to logon at userportal and/or connect via IPSEC - both adds / changes…
Hello Sophos Community, I have the following problem and hope that you can help me. I have configured STAS in my company, which works really well so far. However, I have noticed a scenario that my users keep stumbling across that STAS does not cover,…
Hi,
as the Android/iOS Authentcator is going EOL, I tested something with the WebAuth Captive Portal and changed the setting from
"when captive portal page is closed or redirected" to "when user is inactive"
I notice the userexperience is here…
Hi,
I'm new to Sophos but been around IT for quite some time, however XG with AD groups is starting to do my head in!
I have XG AD Auth setup to 'import' groups, and, I have STAS setup as well. I have 'imported' (linked?) an AD group as an XG Group…
I need to synchronize an Azure Active Directory of one of our customers that does not contain an LDAP service, the synchronization has the objective of connecting the users of that AD in the VPN IPSec Client, when synchronizing with the firewall I verified…
We are getting an error log which shows "Cannot establish NTLM authentication channel with domain"
LOG comp - AD-SSO
Can anyone having the similar issues.
Hello,
In Sophos UTM SG there was a user prefetch - I am really missing this feature because I need to send quarantine-mails to every user on our on-prem exchange.
Can´t believe that this is not longer implemented and users are only created when they…
Hello everyone,
I would like to set up the firewall for radius sso.
My radius server and switches are configured correct as i can get network access and vlan assignmet and failover based on my policies.
My problem is the captive portal as the firewall…
When is Sophos implementing Azure SAML support for the SSL VPN? It's already available in the user portal how long until we can configure this for the VPN, we are contemplating dumping Sophos and moving to something else to get this feature.
Hi,
I have XG125 (SFOS 19.5.1 MR-1-Build278) and IPSEC Remote Access for the users with internal OTP MFA. Remote users started to report disconnecting the VPN during the day, BUT also the need for MFA PIN to be entered multiple times a day.
For example…
hi all,
as the sophos authenticator is no longer on the play store is there an alternative to it
ive tried google authenticator but when i scan both QR codes using both, i get different numbers on both so i imagine the time is different
thanks,…
Now that Sophos have effectively broken .pro configuration files with 19.5.2 by disabling the user portal WAN access after 90 days of no use, i'm looking to migrate everyone to using imported .ovpn files instead. This carries a bit more initial setup…
We have 2 domain controllers, DC1 with the STAS suite and DC2 with the Agent. All of a sudden random people can't log onto the internet, they aren't in active users on the firewall and STAS doesn't seem to be picking them up so they fall through the rules…
Hi,
after STAS implement if a user disconnect Ethernet and connect again without logoff and login still internet work or not
every time he need to logoff and login again.
Thanks
satya
Hello,
can I change the display name of the authentication server without creating a new server ? I can change everything except the display name. The option is grayed out.
Thx
Hi,
i implemented Stas in sophos and AD wmi pooling working also live user are showing in stas agent software but issue is sophos current activities no live user are showing
when i checked in LOGS-authentication-user xxxx failed to login to firewall…
Hi,
I have been using Sophos 18.0.1 with AD authentication and its working fine.
I have recently installed Sophos SFOS 19.5.1 MR-1-Build278 for testing. Initially it was having NTLM authentication issue, which i sorted out by deleting the nasm and…