Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 9 replies
  • Subscribers 28 subscribers
  • Views 23807 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

"Match known users" - doubts

malachite

Hi

My scenario:

Sophos XG230 (SFOS 16.05.3 MR-3)

Firewall Authentication Methods : Active Directory/Local

Current Activities : in Live Users tab the Xg is listing the users authenticated on the domain controller with Client Type as SSO

I've added a firewall rule to authorize LAN's PC to navigate; everything goes fine but if I check "Match known users"
all the users are blocked and they are redirected to the Captive Portal.

Is "Match known users" the way to authorize the Active Directory User (or groups) to navigate in transparent mode or Am I wrong something?

Best regards

malachite



This thread was automatically locked due to age.
Parents
  • 0

    Malachite,

    Using match know users enforce the rule to be applied on users (layer 8). So in your case something is not working correctly.

    Make sure to put the ad server at the top list of Authentication > servers > firewall.

    Regards

  • 0 in reply to lferrara

    lferrara said:

    Malachite,

    Using match know users enforce the rule to be applied on users (layer 8). So in your case something is not working correctly.

    Make sure to put the ad server at the top list of Authentication > servers > firewall.

    Regards

     

    Luk,

    thank you for you reply.

    My AD server is at the top in Authentication > servers > firewall list but in Logs/Authentication i see the users that logged out from the firewall every 10/20 minutes even if the user in AD are authenticated. It's a normal behavior?

     
  • 0 in reply to malachite

    Hi, 

    What is the reason for disconnection in the log viewer | authentication section?

Reply Children