Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 1 reply
  • Subscribers 4 subscribers
  • Views 2217 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL vpn with activedirectory and full upn

mjpmotw

We are using the regular SSL VPN client for our home office users. 

The users can use their regular windows username and password to use the SSL VPN because we are syncing some groups to the backend.

Since we are using full UPN as cnorris@roundhouse.org instead of the old roundhouse\cnorris, we have confused people.

 

Login to Windows using cnorris@roundhouse.org

Login to SSL VPN using cnorris only.

 

How can we also use the full UPN domain-login-combination for SSL VPN?

Kind regards, Matthias



This thread was automatically locked due to age.
  • +1

    Hi Matthias,

    I would guess that's not possible, because the UTM uses the "NT-Style" Username for the AD backend-synched Users. You could try authenticating the users against an internal IAS/RADIUS that is capable of using UPNs.

    We have an installation where the UTM synchs the users from AD for generating the ssl-vpn configuration files and which the users can download/install from the User Portal. The SSL VPN-Authentication works against an internal RADIUS with safeword tokens. There the additional token password was the needed thing, I can't promise that using UPNs is working, too.

    Gruß / Regards,

    Kevin
    Sophos CE/CA (XG+UTM), Gold Partner

Unfiltered HTML