Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 2 replies
  • Subscribers 26 subscribers
  • Views 6363 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to add Active Directory service to remote XG Firewall?

Mark H

I have a remote site without a domain controller that has a site-to-site VPN tunnel setup to our HQ that has a domain controller.

 

At the remote site XG, I verified I can both ping and RDP into the HQ domain controller fine. However, when I add the info to the XG firewall, it fails to connect.

 

Doing a packet capture shows the XG trying to authenticate over the WAN instead of VPN.

 

How can I set this up to authenticate over VPN instead? That way our admins can manage the firewall instead of sharing the local admin account credentials.



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to lferrara

    lferrara said:

    Mark,

    of course you have.

    Follow this kb:

    https://community.sophos.com/kb/en-us/123016

    Regards

     

     

    Does this work if we have DC's in our DR and Azure sites as well?

     

    Our remote device has 3 VPN tunnels - one to HQ, DR, AZU. I'd like to be able to prioritize authentication to HQ and failover to DR or AZU if needed. Just wanted to confirm this is possible as well.

     

    I'm going to read over the links in more detail later tonight.

     

    Thanks!