AD authenticated users user prompted to authenticate again when opening new session

Question

Hello 
 
 I Have a Sophos XG210 firewall with 16.05.1 MR-1 firmware, i have configured AD Server for uses authentification, and activated NTLM in device access on LAN , but when user open new windows session it's prompted do longin again when openning a web browser. 
 and there is no internet access in the others application (outlook for example) until user authentication with their AD credential, 
 there is a way to bypass authentication and use the authenticated Windows user ? 
 
 Thank's

lferrara · Accepted Answer

Idir, 
 if you have installed the STAS on your DC and imported your AD Users inside the XG, on the firewall rule make sure to check the "Match know users" and add there the users want to allow and then if everything is working, users will not receive any authentication pop-up but they appear as Live Users on XG Dashboad. If they do not appear as live users, 
 
 make sure you opened the Windows Firewall Ports on your DC 
 Enabled the Audit events account logon on Default Domain Policy 
 Create the proper connector on XG 
 
 For instructions on how integrate AD users, follow the 3 articles here: 
 https://community.sophos.com/kb/en-us/123156 
 Regards