Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 6 replies
  • Subscribers 26 subscribers
  • Views 7065 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Client Authentication Agent Not Works in PCs With Non Admin Users

Smithesh M S

Hi,

I am using Sophos XG 125 Firewall and tried to install the CAA in my user's computers. Initially, it is found to be working in all the PCs. The issue is observed after restarting the PCs on which the users are login in with non administrator accounts. In such PCs, the CAA will not work once the PC is restarted. I have to reinstall it again to use it. But after another restart, it will again stop working. I have already raised one support case with the Sophos team and got an interesting reply that "Its your domain issue that your domain does not allows the app to start automatically after restart". This is a completely wrong statement as I found a lot of other users also querying about the same thing in the Sophos community and even in other blogs as well. But there was no proper solution found yet for this issue. While installing the CAA in a user pc with non admin rights, it will ask to enter the administrator username and password. The app will get installed only after entering these details. The same way we are installing all the applications in the PC and all of them works well after restarting except CAA. So, its a simple logic that the issue is not at the customer side but with the CAA application only. Hope this time we will get a solution for this long pending issue reported by multiple users.

 

Thanks

Smithesh



This thread was automatically locked due to age.
Parents
  • 0

    Hi  

    Could you please DM us the service request number to check the history of the case and other details?

  • 0 in reply to Keyur

    Hi Keyur,

    The service request number is 9423349.

     

    Thanks

    Smithesh

  • 0 in reply to Smithesh M S

    Hi  

    Thank you for sharing the service request number, please allow us some time to check. I have involved the concerned team in your case and you will get assistance at earliest.

    Meanwhile, could you please try to check the community thread and perform the steps available in it.

    1. Log into web admin -> Authentication -> Client Downloads

    2. Download locally both files: 'Download MSI' and 'Download CA for MSI'

    3. Change the certificate extension from .pem to .cer and double click it

    4. Install Certificate -> Current User -> 'Place all certificates in the following store' then click Browse

    5. Select 'Trusted Root Certification Authorities' -> OK -> Next -> Finish -> Yes. You should see a success message.

    6. Install the msi with elevated privileges 

    7. Run (or don't) the CAA

    The installation will be successful for the local user, and the agent will automatically restart with every user login (if this option is selected).

  • 0 in reply to Keyur

    Hi Keyur,

     

    Thanks for sharing the thread. However, I already found this thread a couple of days back and tried the above steps with no success.

     

    Thanks

    Smithesh

Reply Children
  • 0 in reply to Smithesh M S

    Hi  

    Thank you for your response, please allow us some time, I will arrange assistance at earliest

  • 0 in reply to Keyur

    Finally, Sophos provided me with a so-called solution and it is very simple. Make the restricted user an administrator at the time of installation. Then perform the installation process so that the installation files will go to the concerned user folder only. Once the CAA is installed, change the user back to the restricted user. Then the CAA will work even after the restart. Even though this solution doesn't make any sense I am forced to follow it as Sophos have no other options available with them for this issue.