We have two XG750s setup running in HA mode.
This is the current scenario:
1. Radius SSO is working perfectly and authentication works from the WiFi controller to the Sophos device.
2. We tried to enable Radius authentication for the captive portal. If its for like 100 users, the RADIUS authentication works, but as soon as we enable for all subnets that is around 5000 users together, the entire authentication service of the device hangs, that is neither is it able to handle User authentication nor the Adminstrator authentication (from the local DB on Sophos). Also, we get a communication with authentication server failed message on Captive Portal.
In continuation to this, when the device is getting huge login requests, it is somehow getting queued to send to the RADIUS server but not reaching the server (we can see the requests are not coming from the Sophos XG) but the RADIUS authentication is working perfectly with the WiFi controller at this moment.
3. To prevent the usage of RADIUS server, we want to sync the password modified on this to the Sophos XG via the API feature available.
Unfortunately, the API is not giving me any response for anything except LiveUserLogin and LiveUserLogout. These are the only two functions working, but the API documentation here provides a lot of functions. Am I missing out on some setting?
This is the URL I am querying to: https://<sophosip>:4444/webconsole/APIController?reqxml=<Request><User><Username>someusername</Username><Name>SomeName</Name></User>....{other params specified in API}</Request>
Please try to solve both my issue 2 and 3.
This thread was automatically locked due to age.
