Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 28 subscribers
  • Views 10699 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

AD authentication problem

Ramy Sayed1

 I 'm using xg v 17 and and I added AD server to authenticate users and I downloaded STAT and installed it on active directory, I used ping as logoff detection method to avoid the users being logged off after few minutes , I added firewall exception to allow upd port 6677 and tcp port 5566 ,added local security policy to allow audit success on domain 

every thing was going well,but:

I created 3 groups in AD and added users to it,I imported these groups to XG firewall but I discovered that when I change user group in AD it will not change in XG in the same time

after a little search on the internet the advises were to create groups locally on XG and add imported domain users to it,I did that but every time I restart the xg firewall all users escape to open group and I ve to reassign them again to their groups,how can I fix this issue????



This thread was automatically locked due to age.
Parents
  • 0

    Hello Ramy,

    If you have imported your groups from the AD and you change the user of group in the AD, you will have to wait for the user to be logged off from the XG and Logged in again. The group assignment is checked by the XG during the login. If you have set the logoff detection method to Ping, then the user will have to shutdown his computer to be detected as logged off by the XG.

    I don't know if you can still manage groups manually on the XG as I can't find the "Loose integration" settings into AD settings anymore.

  • 0 in reply to ThibautVan der Kluft

    ThibautVan der Kluft said:

    Hello Ramy,

    If you have imported your groups from the AD and you change the user of group in the AD, you will have to wait for the user to be logged off from the XG and Logged in again. The group assignment is checked by the XG during the login. If you have set the logoff detection method to Ping, then the user will have to shutdown his computer to be detected as logged off by the XG.

    I don't know if you can still manage groups manually on the XG as I can't find the "Loose integration" settings into AD settings anymore.

     

    Dear ThibautVan der Kluft

    thank you for your help

    If I have to restart in ping mode,then how can I use work station polling mode and prevent users from being disconnected every few minutes???

Reply
  • 0 in reply to ThibautVan der Kluft

    ThibautVan der Kluft said:

    Hello Ramy,

    If you have imported your groups from the AD and you change the user of group in the AD, you will have to wait for the user to be logged off from the XG and Logged in again. The group assignment is checked by the XG during the login. If you have set the logoff detection method to Ping, then the user will have to shutdown his computer to be detected as logged off by the XG.

    I don't know if you can still manage groups manually on the XG as I can't find the "Loose integration" settings into AD settings anymore.

     

    Dear ThibautVan der Kluft

    thank you for your help

    If I have to restart in ping mode,then how can I use work station polling mode and prevent users from being disconnected every few minutes???

Children
No Data