This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Web Appliance No Authentication Access

Hi everyone,

This is my first post on Sophos, so please forgive me if I am submitting this in the wrong area.

I am working on installing an agent on Windows computers that communicates with a web service 100% of the time, no matter if someone is logged in or not. Our web appliance is setup as a proxy, which ties with active directory to sort out what policy the user gets.

Is there a way to adjust the default policy so that outbound traffic to a handful of external IP's can be sent successfully without any proxy authentication? Currently the test inside sophos says that its blocked due to default group that the user is in. Note there is no user logged in.

If there is any other information that would help make this question more clear, please let me know

This thread was automatically locked due to age.

0 TomA over 11 years ago
Hi parmstrong,
Welcome - you're in the right place :)
I assume you want to bypass when the destination is a specific external IP address/range? This is certainly possible. Just bypass the destination in 'Configuration > System > Authentication > Profiles'.
Remember though, just excluding the IP from authentication isn't always enough. You are still restricted by what the Policy says the IP address can access. In your scenario it sounds like this traffic HAS already bypassed authentication, but it isn't allowed by policy. So I'd check the following:
Your IP range might not be a member of the default policy. Take a look at 'Configuration > Group Policy > Default Groups'.
Alternatively, you can setup a specific policy for unauthenticated traffic. Simply create a policy for your IP range in 'Configuration > Group Policy > Additional Policies'.
Do let me know if this isn't clear!
- Tom
:39089
Cancel
Vote Up 0 Vote Down

Cancel