STAS in bridge mode

Question

Hello everybody, 
 I configured a Sophos XG210 in bridge mode. Right now, I&rsquo;m trying to configure the Single Sign On using STAS. I&rsquo;m quite familiar with STAS implementation with over 10 clients configured successfully, but this installation is the first in bridge mode and STAS. 
 I have: 
 - Created the Auth Server. - Imported Groups. - Configured Auth Services. - Configured Client Authentication in Device Access. - Installed and configured STAS in the domain controller. - Configure local security policy in domain controller. - Configure system auth cta console commands. 
 following the KB: 
 https://community.sophos.com/kb/en-US/123154 
 https://community.sophos.com/kb/en-us/123155 
 https://community.sophos.com/kb/en-us/123158 
 
 I've already tested successfully, on STAS in the domain controller, if it can reach Sophos Firewall 
 Am I missing an additional step with the bridge mode? 
 Thanks in advance for your help. 
 Regards, 
 Jose

sachingurung · Accepted Answer

Hi Jose, 
 There is no configuration change to configure STAS with XG in bridge mode. Hence, re-verify the configuration. 
 Thanks

JoseCasanova · Answer

Hi Sachin, 
 you're right. I just disable and re-enable the auth cta in Sophos Console, and everything started up succesfully. 
 To disable, go to sophos console, option 4: 
 system auth cta disable. 
 To re-enable and add a collector: 
 system auth cta enable 
 system auth cta collector add collector-ip [Colector IP] collector-port [Collector port - default 6677] create-new-collector-group 
 
 Regards, 
 
 Jose