Good Day
First of all, some info on my general configuration.
=> XG-230 appliance (in HA Active-Passive mode), STAS enabled with two collectors on two AD DCs (Windows Server 2016) each.
Problem:
On any of the DCs, Active Directory Users and Computers, <domain>, Users, <User>, Account, Log on To...,
=> The user can log on to: (a) All computers or (b) The following Computers
AD users with option (b) =>limited for log on to specific AD computers only, although they are logged in on the PC they are limited to (Windows Logon), they fail to log in to both the sophos captive portal and the sophos user portal.
On the contrary, users with option (a) =>they can log on to all computers of the domain, succeed to log in to both the sophos captive portal and the sophos user portal.
Changing the particular property of an AD User, changes also the behavior.
Behavior remains problematic regardless of AD user membership, meaning weather AD User is part of the Admins, Domain Admins, Enterprise Admins, Domain Users etc group.
Any suggestions?
Thank you in advance.
PS: New user here, <1 year experience with SOPHOS overall.
This thread was automatically locked due to age.