[9.200][DUPE] Are WAF and AD SSO Transparent Mode Mutually Exclusive?

Carrying on with my testing of 9.2 features, I recieved this warning when I tried to activate the WAF.

"Cannot enable Web Application Firewall when one or more Web Filter Profiles are using ActiveDirectory SSO in transparent mode."

Is the WAF and and AD/SSO Transparent Mode operation mutually exclusive? Is the reverse also true? With WAF enabled the UTM cannot run AD/SSO in Transparent Mode?

Cheers [:)]

Parents

0 Michael Dunn over 11 years ago

Actually, the issue is that WAF has an exclusive lock on all interfaces, including loopback. When we start using AD SSO in transparent mode, some parts of WAF stop working (I don't know the details).

The problem is within WAF, which is why the Web Protection team (who did AD SSO) could not resolve it for 9.2 release. The teams will be working together to come up with a solution in a future release.

Mantis 30736
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Reply

0 Michael Dunn over 11 years ago

Actually, the issue is that WAF has an exclusive lock on all interfaces, including loopback. When we start using AD SSO in transparent mode, some parts of WAF stop working (I don't know the details).

The problem is within WAF, which is why the Web Protection team (who did AD SSO) could not resolve it for 9.2 release. The teams will be working together to come up with a solution in a future release.

Mantis 30736
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Children

No Data