Hi all,
FW XG v (SFOS 19.0.1 MR-1-Build365)
I just have 2 DCs with stas installed. I think stas authentication is working
as you like in the capture, logon type is 3 !!
But logon type 3 as defined: The STAS agent runs on a member server and…
I have two Domain controlers and on both installed STAS for twho Sophos XG HW appliance in HA active-pasive. After upgrade from 18.5.4 to 19.5.1 i have problem evaluating user rules. After upgrade i reinstall STAS to newwr vrsion on both DCs. I need reeneter…
Hi there, are there any plans that STAS will support IPv6? We are using IPv6 and STAS agent is not able to work if user is using IPv6.
Besr regards, Oldrich
Hello guys!
I currently have a scenario that uses authentication between the firewall and Active Directory.
In this same Active Directory, in addition to the main domain, I have other domains with linked users.
In the authentication configuration…
Hello,
we use a XGS116w in one of our branch offices running on firmware: 19.0.1 with SD-WAN.
We deployed a firewall rule through Sophos Central for Web Surfing (LAN-Zone to WAN-Zone) with different Web Policies.
All is working fine.
Now we…
I have 2 DC in my domain, and I installed STAS Suite (Agent and Collector) in one of the DC. The issue is STA Collector not showing Sophos Firewall IP address on Sophos Appliance, It appears some often and disappear when I restart the STAS. I tried all…
Hello All,
With sophos xg in the company
AD authentication (stas and CAA)
I have may be 40 rules FW LAN > WAN, but all these rules are with " match known users ", so users or groups are presents
there is no rule witch allow mac@ pc or ip address…
Hello,
i have an big problem at a customer site.
We switched from UTM to Sophos XGS. We have configured STAS. There is a rule for Internet HTTP/HTTPS access. The rule is open for everyone.
I have configured a Web protection Policy. On top everybody…
We have a single network & zone which contains both domain-joined and non-domain-joined devices.*
For domain-joined devices, we use STAS and all is well.
For non-domain-joined devices, we WANT to use captive portal to ask the user to login. However…
Hi all,
I want to know if caa is more efficient than stas authentication?
when to use caa and when to use stas ?what could be the difference between stas and CAA?
Does CAA automatically require firewall integration with AD?
Can we use stas authentication…
Hi Community,
we're using an XGS Firewall (V19) and STAS for authentication of our users.
On our domain controllers in stas.log we're seeing an huge amount of these entrys every few seconds:
SSO_server_handle_wrkstpoll_req: poll req for '43.129…
Hi all,
Hoping someone can point me in the right direction.
I have enabled STAS on our Sophos XG. I can see user showing on the STAS Agent on the server.
I have also added the server to the XG on the Auth List and connections pass without issue…
Hello, everyone,
In our network we use STAS. a few days ago we disabled NTLMv1 in the network and since then every 5 to 10 minutes all users either get no internet access or get Captiv Portal windows through their browser. Apparently the users are logged…
Hi.
Been a previous user of Cyberoam firewalls and have a site with Sophos XGS136w device.
The firewall is AD integrated, and the domain has STAS configured and operating.
This site has a vast majority of users on a Windows RDP server.
I'm attempting…
Issue
A customer is faced with a strange problem in the Sophos XGS Fw (v19), After rebooting the firewall or the Active Directory server, certain users are no longer in their group. We add all the subnets to the STAS and log in to the user portal…
Hi,
Is there or could Sophos provide the documentation of the protocol or API to implement a custom STAS collector ?
If we could develop our own STAS collector, we could authenticate users already authenticated with a 3rd party VPN solution.
…
Hi,
We have setup proxy on client computer for the sophos xg and AD SSO in place and it just works fine; user starts browsing, gets seemlessly authenticated via AD SSO and surfs on...
Now my organization wants to get rid of proxy settings, the traffic…
I wanted to share my observations regarding communication problems between STAS Agents and Collector.
We have three domain controllers, one primary and two backup. I installed the nevest STAS application on each of them. One of them was launched in…
We have the SG450 migrated to XG Firewall software, users began randomly to lose internet connection and have different error messages. Like those I'm attach here. Is it possible to tell me how to solve this big problem, because it is really frustrating…
Hi All,
I'm facing an issue here that the XG firewall seems doesn't communicate with the STAS.
On the STAS, we are able to see there's AD user being login on the Live user tab. However at user under XG firewall, there's no user shown.
I have been…
Good day all,
We are having issues on the clientless SSO that there's multiple account hoping around the end user.
Below are the scenario
1) Multiple account sign-in
I have login with my AD account and it can be seen authenticated on the AD and…
Hello
Plz how can i bloc acces to the internet for NON-Aactive directory, or Local User.
I already import my AD user and make the policy for only AD User, and check the " Match known users is selected"
But i see that all PCs from the local subnet…
I have an XG230 with STAS running on a Windows 2012 R2 domain controller.
Some of the users listed in STAS are showing their ip address as that of the XG230 and not the correct ip address of the machine they are on.
These users suffer from random…
A customer is faced with a strange problem in the Sophos xgs Fw (v19) , After rebooting the firewall or the Active Directory server, certain users are no longer in their group .
We add all the subnets to the STAS and log in to the user portal (The technical…