This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Question: Sophos UTM 9 import computers from Active Directory

Hi,

I want to use computers from AD to be imported automaticly by Sophos UTM 9 (latest version) but it seems that the active directory SSO connection only is being usefull for users and user groups.

I did see that there is and API, can I use the API to create/delete or update a host on UTM v9 and add/remove it for a UTM group. This way I can script to update the group on the UTM at a 1 hour interval or maybe even more.

If someone already done something like this please help and share me an example.



This thread was automatically locked due to age.
Parents
  • Hoi Renede,

    You asked about a possible solution to your problem, but you didn't say what you wanted to do with those Host definitions.  Would reverse DNS as described in DNS best practice address your need?  How about the Sophos Authentication Agent with STAS?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • Hoi Renede,

    You asked about a possible solution to your problem, but you didn't say what you wanted to do with those Host definitions.  Would reverse DNS as described in DNS best practice address your need?  How about the Sophos Authentication Agent with STAS?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
  • Hi,

    I want to use ad computer groups to allow computers to connect with teansparant webproxy. It works on utm if i use a group made on utm but I cannot set policies those are based on users.

    So if I can use the api to add/remove computers from that group on utm I will run a powershell script that synchronises the content of the ad group with the utm group

  • If you're already adept with RESTful-API, then that's probably easier.  Otherwise, I think this is an example of what either the Authentication Agent or STAS is designed for.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA