This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

XG firewall disconnecting authenticated Radius SSO users

We are a school running an XG135. We have AD accounts for all users to sign in with. On wifi users authenticate via a RADIUS server and DHCP.

Our staff have reserved DHCP IP's. Depending on their role we have used those reserved IP's as IP Hosts in XG in order to create custom firewall rules.

Some users are connecting to wifi and RADIUS and DHCP are correctly assigning the reserved IP. The IP briefly displays as a live concurrent user. then disappears and the authenticated user no longer has internet access yet still has full network functionality.

This thread was automatically locked due to age.

0 FormerMember over 3 years ago

Hi bcbotha,

Thank you for reaching out to Sophos Community.

You can check access_server debug events to get more information about the user disconnection.

Run the below command to put access_server service in debugging.

==> Login to SSH > 5. Device Management > 3. Advanced Shell.

# service access_server:debug -ds nosync

# tail -f /log/access_server.log

==> Wait until the user disconnects. Note down the logout timestamp from Log viewer > Authentication.

==> To stop debugging please run the below command.

# service access_server:debug -ds nosync

Share the session output in PM.
Cancel
Vote Up 0 Vote Down

Cancel