Hello Community,
I configured some Terminalservers with Intercept X and SATC (Sophos Authentication for Thin client) and User Accounts are recognized and can be used in XGS3300 Firewall rules.
So far so good!
Now I wish to exclude some User Accounts with the Option SatcExcludedUsers as described here:
https://docs.sophos.com/nsg/sophos-firewall/19.5/Help/en-us/webhelp/onlinehelp/AdministratorHelp/Authentication/SophosAuthenticationForThinClient/SATC/AuthenticationSetupSATCUsingEndpointProtection/index.html#introduction
Unfortunately the excat syntax is not shown and I'm not able to exclude more than one Account.
OK/Account is excluded:
- reg add "HKLM\Software\Sophos\Sophos Network Threat Protection\Application" /v SatcExcludedUsers /t REG_MULTI_SZ /d "SYSTEM"
- reg add "HKLM\Software\Sophos\Sophos Network Threat Protection\Application" /v SatcExcludedUsers /t REG_MULTI_SZ /d "Administrator"
Not ok/Account is not excluded and there are a lot of Error Entries in the Auth Log of the XGS for these Accounts:
- reg add "HKLM\Software\Sophos\Sophos Network Threat Protection\Application" /v SatcExcludedUsers /t REG_MULTI_SZ /d "SYSTEM, Administrator, xxx"
What is the correct Syntax to use more than one Account?
Thanks!
Eric Hencker
This thread was automatically locked due to age.
