No users in AD groups

I am having the exact same issue. I'm using the STAS KB setup and so far only the administrator account is imported. All the groups successfully appear but no users from those groups. When i look at STAS live users I see all the different users logged in but sophos is not adding them to the account. 

i followed the following KB - https://community.sophos.com/kb/en-us/123156

i'm on SFOS 17.0.5 MR-5

Any help is greatly appreciated. 

Hi,

Did you consider this KBA?

https://community.sophos.com/kb/en-us/123161

Basically all groups except the "pimary" group will stay empty. But you can use the empty groups in the Web filter Policy.

Cheers

I followed https://community.sophos.com/kb/en-us/123161 and new users are not only not appearing in the groups but they are not being created either. The only user that is being created is the administrator account user on the AD server and sophos creates a new group called "OPEN GROUP" and I can see the administrator as a member of that group and the administrator user is automatically created.

am I missing any steps here to have the other users imported? I can see the users on the show live users tab within STAS. They are just not being imported into sophos.

Thanks for all responses.

Hi,

Please share some screen shots of your group / user / authentication tab.

Cheers

So here is what i did to get it to work. i deleted my current configuration and started over. Created a new group on the AD server called SophosFirewallTest. I added the users to that group only. 

Now everything is working. all users are showing up in the correct group except for the admin account which is showing up in "open group." I'm guessing the admin account is showing up in the open group because it is used in multiple groups. I'm not sure. Nevertheless, I'm considering this a win and problem solved.

Again, thanks for all responses. 

So here is what i did to get it to work. i deleted my current configuration and started over. Created a new group on the AD server called SophosFirewallTest. I added the users to that group only. 

Now everything is working. all users are showing up in the correct group except for the admin account which is showing up in "open group." I'm guessing the admin account is showing up in the open group because it is used in multiple groups. I'm not sure. Nevertheless, I'm considering this a win and problem solved.

Again, thanks for all responses. 

Hi Bobby,

AD will never forward the primary group information to the XG firewall. To understand what happens in such event, refer to, 

Sophos Firewall: Group membership behavior with Active Directory

Thanks,