Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 3 subscribers
  • Views 817 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

WIFI - Internal device authentication issue

yuksun

Hi,

Apologies if this has been answered somewhere (if it has please point me in the right direction) but i cant find an answer to my specific issue.

We have just installed a Sophos XG and using STAS for client authentication, which is fine. However we have third part wifi access points which we manage via the cloud. Before these AP's can be managed they need to activate via a remote server by going simply to a https:// site. However the error logs on the AP are showing it cant connect.

I'm assuming its because the devices aren't authenticated to be given access out to the internet.

I do a policy test and it says Blocked due to this. So how or whats the best way I can circumvent this problem?

Thank you in advance!

Matt



This thread was automatically locked due to age.
Parents
  • FormerMember
    0 FormerMember

    Hi ,

    Thanks for reaching out to the Community! 

    You could exclude the IP address of the Access Point from STAS, check out the following KBA; the instructions on the KBA are for excluding the user, but on the same tab "Exclusion List" find Login IP Address / Network Subnet mask Exclusion List and add the IP address of the Access Point. 

    You can also create an authentication exception for the Access Points IP address. 

    Reference screenshot:

    Thanks, 

Reply
  • FormerMember
    0 FormerMember

    Hi ,

    Thanks for reaching out to the Community! 

    You could exclude the IP address of the Access Point from STAS, check out the following KBA; the instructions on the KBA are for excluding the user, but on the same tab "Exclusion List" find Login IP Address / Network Subnet mask Exclusion List and add the IP address of the Access Point. 

    You can also create an authentication exception for the Access Points IP address. 

    Reference screenshot:

    Thanks, 

Children
No Data
Unfiltered HTML