Sophos Firewall

Discussions macOS SSO

Sophos Firewall requires membership for participation - click to join

Thread Info

State Verified Answer
Locked Locked
Replies 4 replies
Subscribers 26 subscribers
Views 856 views
Users 0 members are here

Options

Suggested

This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

macOS SSO

Nick Granville over 4 years ago

Is SSO authentication possible for macOS on Sophos XG routers?

This thread was automatically locked due to age.

Top Replies

FormerMember over 4 years ago in reply to Nick Granville +2 verified

We have a troubleshooting article for Kerberos and NTLM. Check that out here .

0 FormerMember over 4 years ago

Hi Nick, Thanks for reaching out to Sophos Community.

SFOS v18 and above support Kerberos for SSO and you can use them with macOS if you're successfully able to join MAC systems to your Active Directory.

STAS on the other hand (another SSO type supported by XG) will not work properly as it uses WMI for logout detections and I am not sure about WMI is supported on Mac or not.

You can always use CAA (Client Authentication Agent) and install them on MAC and user can use the same AD credentials to log in through it, Instead of SSO if that's an option.
Cancel
Vote Up 0 Vote Down

Cancel
0 Nick Granville over 4 years ago in reply to FormerMember

Thanks! Yes I thought that it should be working with kerberos. I see only some logins so am wondering where I might start troubleshooting our AD environment. macOS devices bind and authenticate fine but having mixed results on the XG. Is there any technical documentation about this feature?
Cancel
Vote Up 0 Vote Down

Cancel
0 FormerMember over 4 years ago in reply to Nick Granville

We have a troubleshooting article for Kerberos and NTLM. Check that out here.
Cancel
Vote Up +2 Vote Down

Cancel
0 Nick Granville over 4 years ago in reply to FormerMember

Thanks!
Cancel
Vote Up 0 Vote Down

Cancel