[9.192-8][DUPE] Windows AD Authentification

Hello,

I use Windows AD Authentification for the UTM User Portal in my tests.
My login is successful if i use only the username without domain ending.

I see a difficult problem with my users. They use for other services their mail address as login, e.g. username@example.com. If i try to use this as loginuser the portal login failed.

Is this behaviour correct?
Can it be changed in future versions?

I don't already tested this with reverse authentification for WAF to connect Exchange.
I think it would be the same behaviour.

Greeting,
Alex77

0 Tinkerbell over 11 years ago

Hi Alex,

Is a bug already reported:

https://community.sophos.com/products/unified-threat-management/astaroorg/f/81/t/65533

https://community.sophos.com/products/unified-threat-management/astaroorg/f/81/t/65517

Fix will be merged in 9.193.
Best,
Bianca
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 Alex77 over 11 years ago

Hello Bianca,

I'm not really sure if the already reported bugs apply my login problem.
I've no problem with configuring the bind DN in the server authenification config.
That works.

My problem is the usability from my users to login in e.g. for the user portal.
To login succesful the username is only accepted, not the email address.

Is this possible with upcoming fix?

Greetings,
Alex77
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 Sascha Paris over 11 years ago

Hello Bianca,

I'm not really sure if the already reported bugs apply my login problem.
I've no problem with configuring the bind DN in the server authenification config.
That works.

My problem is the usability from my users to login in e.g. for the user portal.
To login succesful the username is only accepted, not the email address.

Is this possible with upcoming fix?

Greetings,
Alex77

No, not with AD Auth. Only Username. But you can configure Radius on the Domain Controller and bind UTM via Radius...in this case you can choose as username 'user@domain' ( has to be configured in Radius Server that way)
/Sascha

Sorry for short answers and typos. was written on mobile using astaro.org app.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 Alex77 over 11 years ago

Okay, Radius login work for Portal und SMTP.
But after successful login the user portal, i haven't any userspecified pages and buttons.
I've only the pages/buttons "Welcome" and "Logut", no mail buttons or vpn.
With AD login all user pages are visible.
I've created "NAS Port Identifier" for "portal" and "smtp"
Did i do something wrong? Or is it a bug?
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

[9.192-8][DUPE] Windows AD Authentification

Submitted a Tech Support Case lately from the Support Portal?