This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

9.502 Update causes Internet users cannot authenticate with active directory

SG-230 firewalls in HA configuration.  After upgrade to 9.502 users were unable to access the internet.  Kept prompting users for credentials.  Testing websites and users in the Policy Test page showed as working fine but it isn't.

Rejoined the firewall to the domain seems to have fixed it - for now.



This thread was automatically locked due to age.
Parents
  • This has been discussed elsewhere in this forum.  The update process installs the buggy 9.500 and 9.501, which breaks AD SSO.   9.502 has the fix, but you must disconnect and rejoin to the domain for it to take effect.  I think this task is in the release notes which should be in the blog section of this forum.  Unlike 9.501, this should be a permanent fux.  

    A few people have reported problems with the rejoin  but most seem to have been successful.

    As far as I know, Sophos still considers 9.502 to be beta software, but if you have already gone past 9.408, it is probably your best option.

  • I would hope 9.502 is not considered beta since Sophos pushed it out to my SG 230 appliance - it does not state that anywhere in the information with it.

  • DouglasFoster said:
    This has been discussed elsewhere in this forum.  The update process installs the buggy 9.500 and 9.501, which breaks AD SSO.   9.502 has the fix, but you must disconnect and rejoin to the domain for it to take effect.  I think this task is in the release notes which should be in the blog section of this forum.  ....

    In my opinion the AD SSO should not break if there is no reboot between 9.4x and 9.502. I gave 9.502 today a try and it's still working without rejoin. But maybe this is random.

    Best

    Alex

    -

Reply
  • DouglasFoster said:
    This has been discussed elsewhere in this forum.  The update process installs the buggy 9.500 and 9.501, which breaks AD SSO.   9.502 has the fix, but you must disconnect and rejoin to the domain for it to take effect.  I think this task is in the release notes which should be in the blog section of this forum.  ....

    In my opinion the AD SSO should not break if there is no reboot between 9.4x and 9.502. I gave 9.502 today a try and it's still working without rejoin. But maybe this is random.

    Best

    Alex

    -

Children
No Data