Sophos ZTNA: Access Sophos Firewall Web Admin from ZTNA (Part 4: Setup an identity provider)

DisclaimerThis information is provided as-is for the benefit of the Community. Please contact Sophos Professional Services if you require assistance with your specific environment.


This Recommended Reads is Part 4 of the Series "Access the Sophos Firewall Web Admin from ZTNA.

Note: You will need the settings we use in Part 3


Sophos Central Administrator rights

Azure Administrator rights

Set up an identity provider

We will use Azure AD( Entra ID) as an Identity Provider.

The identity provider is used for user synchronization and as an identified provider.

To set up the identity provider, go to your central account and click on ZTNA > Identity Providers > Add Identity Provider. 

Name = Azure-IDP (Enter a meaningful name)

Provider = Azure

Client ID = You can find this in Azure > yourdomain > App Registrations > All Applications > Yourapplication in our case, ZTNA APP

Tenant ID = Click on the application, and under Essentials, you’ll see Directory (tenant) ID

Client Secret = Value of the Client Credentials 

Next, click Test Connection and if everything is ok, you will  get a "Connection succeeded"