This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Web Access AD reauthentication

Hi,

i need some advise on my issue on my UTM. i have configured for a long time already AD Standard SSO. what my users is experiencing recently is they have been ask to reauthenticate and unable to authenticate so i reset the UTM and most users can authenticate. There has been no changes to AD server itself. CPU usage of the UTM is normal below 50%. my next move is to rejoin domain the UTM and resync all AD groups and users to fix the issue.

Any idea why this issue is happening? any idea how to fix and prevent users from reauthentication? thanks for the advise

This thread was automatically locked due to age.

0 Michael Dunn over 9 years ago

In a normal setup, Standard mode AD SSO should succeed with no prompting the user (hence Single Sign On). If the browser does a pop-up for credentials (which can be the case, if the local user is not a member of the domain the UTM is a member of) the browser should remember the credentials from before and reuse them.

I think there is something wrong with your setup. What it is, I don't know.
Cancel
Vote Up 0 Vote Down

Cancel
0 BAlfson over 9 years ago

Rejoining the domain might fix this. Also, make certain that you're using Kerberos instead of NTLM as suggested in HTTP-S Proxy Access with AD-SSO.

Also, you might want to consider #6 in Rulz.

I don't think re-syncing will make any difference.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel