Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 6 replies
  • Answers 2 answers
  • Subscribers 27 subscribers
  • Views 982 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos(STAS) logs out AD users

Farzan Barouj

Hello, everyone,

In our network we use STAS.
a few days ago we disabled NTLMv1 in the network and since then every 5 to 10 minutes all users either get no internet access or get Captiv Portal windows through their browser. Apparently the users are logged out of Sophos.
AD SSO is disabled for all zones.
Does anyone have an idea what it can be?

I thank you in advance.



This thread was automatically locked due to age.
Parents Reply
  • 0 in reply to Farzan Barouj

    So the question is, when that user is being presented with the captive portal are they still showing up on the STAS server live users ? if yes your STAS is fine and WMI is passing just fine, can you share the screen shots of the STAS  and on the advanced shell ipset -L lusers | grep unauthenticated and see if the userID matches with that off on the live users, if the user ID number is unauthenticated its the WMI 

Children
  • +1 in reply to kranthi yadlapudi

    Hello, everyone,

    I checked WMI connection between STAS and workstation. When I test directly through STAS, it shows that the WMI test is successful. but when I test through WMI tester I get error message.
    So that means the user disconnect determined by the Sophos firewall is due to "Logoff Detection". and since "Logoff Detection" runs through WMI, so users are logged off through STAS, because WMI is not working properly.
    To temporarily work around the problem, I switched "Logoff Detection" to ping. since then everything works fine and the users are not automatically logged out by STAS. Meanwhile I'm trying to fix the WMI problem.

    Thank you

Unfiltered HTML