Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 27 subscribers
  • Views 1280 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

AD Authentication WAF

Martin Kemp

Hi All

New to XG and I'm using it as a WAF with the webserver protection.

I have configured AD authentication. 

For one of my servers I want to use the authentication portal but I have found that you can only authenticate using a user username and not UPN. I'd like the users to have a choice of both.  I did read somewhere that UPN and username had to match which wont work for us. 

I've also considered using Radius auth for this instead of AD. Anyone had any experience of this?

 

Thanks in advance 

 

Martin



This thread was automatically locked due to age.
  • 0

    XG should use both.

    If you simply enter username, it will try all AD Servers with matching Domain.

    If you enter the UPN (username@domain.com), XG will look for the matching AD Server in config for domain.com. 

  • 0 in reply to LuCar Toni

    Ok understood, 

     

    I think this line below gets us. 

     

    • UPN must be identical to sAMAccountName to make the login successful as the sAMAccountName is used by the XG Firewall and not the UPN.

     

    Our UPN's don't match the usernames and we have multiple sub domains. I tried to configure each domain as a separate authentication method however it didn't work. 

     

    They just have to live with using there username 

     

    Thanks for the reply.