This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos UTM Home authoritzation with Radius

Hi Guys,

TL;TR: Can Sophos UTM Home handle authorizing between users and VMs through a Radius server?

In my architecture I have Sophos UTM Home as firewall with uses Radius to handle AAA. Then in the LAN I've several machines. Each user connect through a VPN remote access, then they ask permission to connect to a VM using a web form (which can grant or deny the access). The first idea was to handle the authorization (the "book" a VM concept) using the same Radius server used for authentication, but seems that this is not possible with Sophos UTM Home. I think that the only way to do that is creating dynamically FW rules, which is not a good solution because the authentication and the authorization are done and configured in two different places.

Any idea? There's a better solution or I'm just doing it right?

Thanks a lot.

This thread was automatically locked due to age.

0 BAlfson over 10 years ago

Hi, and welcome to the User BB!

There is no different version for home use. It's simply that the home-use license has a limit of 50 IPs and that it's not possible to customize to replace the Sophos logo and name with your own.

firewall with uses Radius to handle AAA

What is AAA?

Is this a question about the Web Application Firewall? Should we move this thread to that forum?

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel
0 hanger over 10 years ago in reply to BAlfson

AAA means Authentication, Authorization, and Accounting.

I've a Radius with MySQL where I've all my users and machines. Of example, I've as users Alice and Bob and as machine host1 and host2.

Now I have authorised Alice for host1 for 1h. So I want my Sophos Packet Filter to allow all packets froms Alice's VPN IP to the host1.

Is that posible? Or packet filter can only be configured through firewall rules?
Cancel
Vote Up 0 Vote Down

Cancel