Windows server 2012 domain controller.
I installed the 9.5 update on June 2, did not see any issues with this for the client, updated to 9.501-5 on June 12 midnight, and Internet access is failing on multiple sites.
Can get to Google.ca
Cannot get to canada411.com - Too many http redirects message.
Turned off web filtering and the websites were available - but the client requires filtering.
Re-enabled and turned off AD SSO authentication and websites are available again with correct content being blocked.
Attempted to remove from and rejoin domain, but domain join failed.
Currently, I have the client functioning, but, I need to rejoin AD and resume SSO authentication.
this fix works only temporary.
- removed AD Object
- removed Sophos UTM from Domain
- sync all DC´s
- rejoin Sophos
--> this worked for ~ 8 hours, this morning, same issue again.
It looks like that it has something todo with Kerberos.
- After Update the deployment of wpad.dat via NAT Rule (Port 80) is no longer working at the internal interface. I had to create an additional Interface and then NAT from Port 80 to 8080 on the other interface.
Sophos: Please fix these issues and better: test SSO / Kerberos before announcing a new Update.
This might be a silly question, but how do I remove from AD domain?
In single sign on tab I can only join the domain.
Thank you very much
i had the same Problem before. What i did:
type some bullshit for
and hit "Join Domain"
after this, the Sophos tells me it is no longer part of the Domain
Then i deleted the Computer Account inside the AD Domain
For now it's working.
The worst part of this is... I can't restore to previous version 9.500-9 no matter what.. at least until sophos fix this issue.
45 minutes and authentication issue back again.
Now anyone.... I can i restore to previous version? Using restore function in web interface does not working
You can find the procedure here: