Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 7 replies
  • Answers 1 answer
  • Subscribers 28 subscribers
  • Views 24185 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

AD User group membership not updating from AD to SOPHOS

syed jahanzaib

I am using SOPHOS XG 17.0.6 MR6. It's properly synced with the AD I have also installed STAS and done its config onxg both ends i.e sophos and DC. When a new user join domains then it gets update in the sophos users list , but after that if I changes membership of this  user on the Domain controller, then this change does not replicates back to sophos. this is the main problem we are facing. Our local sophos partners are unable to provide any solution to this.

Please help!



This thread was automatically locked due to age.
Parents Reply
  • 0 in reply to syed jahanzaib

    Authentication > Servers (tab) > edit your DC(s) >

     

    I have under Search Queries * as:

     

    ou=My Groups,dc=domain,dc=tld

    ou=My Users,dc=domain,dc=tld

    dc=domain,dc=tld

     

    Test connection, was successful.

     

    In the Services tab,

    Ensure the proper orders are arranged for each of the types of services you are using.

Children
  • 0 in reply to WKEIT

    Well my Test Connections are always success , what I think is that SOPHOS XG caches memberships in local DB and updates after long time or several restart of client.

    in TMG things are working very quickly. So its hard to convenience our management when it comes to comparison!

  • 0 in reply to syed jahanzaib

    Yeah the initial test connection will be successful. I added that bit to ensure you still had good connectivity after adjusting the settings.  As far as the synchronization, that was the problem I experienced and after the changes, my AD security groups were updating when new members were added/deleted. Whereas before, the groups imported, but the subsequent membership adjustments did not synchronize.