Sophos Firewall

Discussions Couldn't delete user. A firewall rule, VPN connection, web policy rule, or SSL/TLS inspection rule exists for this user.

Sophos Firewall requires membership for participation - click to join

Thread Info

State Not Answered
+1 person also asked this people also asked this
Locked Locked
Replies 6 replies
Subscribers 28 subscribers
Views 4366 views
Users 0 members are here

Options

Suggested

This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Couldn't delete user. A firewall rule, VPN connection, web policy rule, or SSL/TLS inspection rule exists for this user.

LHerzog over 3 years ago

Please Sophos, provide a real world solution to QUICKLY* delete a user that is used "somewhere" in the configuration.

I did'nt find useful events while tailing /log/*.* while I tried to delete the user.

at least the user could be disabled...

* "real world solution to QUICKLY" means NOT

- searching or filtering all firewall rules, web policy rules for that username

- AND OR removing the user from groups

- AND OR exporting the whole config and open in text editor

etc.

Thank you very much in advance

This thread was automatically locked due to age.

Parents

0 FormerMember over 3 years ago

Hi LHerzog,

Thank you for reaching out to Sophos Community.

Ensure that no VPN policy is applied/enable on the user profile.

Check applog.log and csc.log(in debug) to get the exact reason.
Cancel
Vote Up 0 Vote Down

Cancel
0 LHerzog over 3 years ago in reply to FormerMember

Hi Yash,

thanks, found that screenshot and already disabled those 4 settings. User could not be deleted because of firewall rule dependies.
Cancel
Vote Up 0 Vote Down

Cancel
0 LHerzog over 3 years ago in reply to LHerzog

so there is no solution?

are there any plans to implement some UTM-like search into XG after all this time? I remember some feature requests for this.

https://community.sophos.com/sophos-xg-firewall/f/discussions/124492/missing-button-to-show-where-an-object-is-used-and-its-last-change

https://community.sophos.com/sophos-xg-firewall/f/discussions/100841/xg-missing-search-usage-feature-like-utm
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 LHerzog over 3 years ago in reply to LHerzog

so there is no solution?

are there any plans to implement some UTM-like search into XG after all this time? I remember some feature requests for this.

https://community.sophos.com/sophos-xg-firewall/f/discussions/124492/missing-button-to-show-where-an-object-is-used-and-its-last-change

https://community.sophos.com/sophos-xg-firewall/f/discussions/100841/xg-missing-search-usage-feature-like-utm
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 LuCar Toni over 3 years ago in reply to LHerzog

There are plans to implement this, but its not that easy to do this. As the basic Fundation of both system are different, you cannot simply reference everything to every setting.

__________________________________________________________________________________________________________________
Cancel
Vote Up 0 Vote Down

Cancel
0 LHerzog over 3 years ago in reply to LuCar Toni

I can imagine it may not be easy. But woking with XG rules and users isn't either. It's always a back and forth. Note a reference here, a name there, oh, damn, this form only accepts the name fully written from the beginning, oh this form accepts a "Contains" pattern. Oh, I need a port numer to find what I need.... argh!
Cancel
Vote Up 0 Vote Down

Cancel
0 LuCar Toni over 3 years ago in reply to LHerzog

This is something, we are actually resolving in a upcoming major release. So we are addressing most of this stuff within a upcoming release.

__________________________________________________________________________________________________________________
Cancel
Vote Up 0 Vote Down

Cancel