Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 4 replies
  • Subscribers 27 subscribers
  • Views 8826 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

iOS Network Agent - battery usage and iPhone temperature

Patric Beuthen

Dear All

I have installed iOS Network Agent on my iPhone7 with XG Home yesterday for authentication (user is an Active Directory user). Since then, the battery has to be recharged twice a day and the iPhone is very warm.

Has anyone made a similar experience? 

Thanks, Patric



This thread was automatically locked due to age.
  • +1

    Hi Patric,

    I suspect that the network agent will send keep-alive request to the XG, telling the UTM that the User is active. This might be a continuous backend process and might possibly cause the battery usage. I am not sure but using my experience about how the authentication mechanism works, just my two cent worth.

    You can verify this information by monitoring the access_server.log in the /log directory.

    Hope that helps.

  • 0 in reply to sachingurung

    Hi Sachin!

    thank you. The log shows the following (it is pinging an Active Directory username, not a computer):

    Due to lack of knowledge, I also had switched on NTLM temporarily and always received annoying popups for the captive portal. I found a post here which explained it.

    Maybe my approach is completely wrong. Is there any best practice for authentication? I have a QNAP ActiveDirectory as Authentication Service and I mainly use MacBooks plus iOS and VM Windows.

    I found STAS Transparent Authentication Suite. Is that maybe a better choice for Windows? And Can I also use it for OSX if the user is an Active Directory user?

    Kind regards, Patric

  • 0 in reply to Patric Beuthen

    Hi Patric ,

    NTLM seems a valid option, if you do wish to use Captive portal you may change the user timeout settings if you wish to disable keep alive. As for STAS is used for client less SSO , you may install Network agent on both MAC and Windows systems as an alternative. 

    SATS with OSX is still a known issue as it does not generate WMI query, we are still working on the fix or an alternative. Personally, I have used an open source application with Mac OS to sync with Active directory. 

  • 0 in reply to Aditya Patel

    Thank you Aditya

    what exactly do you mean with "Mac OS to sync with Active directory"? In my understanding, OSX needs to pass a (Kerberos or so) ticket to the XG which accepts (trusts) this information, right?

    And would you mind sharing the open source tool you are using?

    regards, Patric