This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Authentication agent problem

I want to block several AD users from using custom ports, and allow others so I must use authentication in firewall rule . So I first install SAA on those clients but can't see network object of those users that I installed SAA on , in UTM. I can't find any info on this in Sophos books...
I checked "create users automatically" , but don't know if I needed to (probably yes).

Thanks

This thread was automatically locked due to age.

Parents

0 BAlfson over 11 years ago

OK, I moved this thread to the Network Protection forum for you.

I normally don't like to use 'Create users automatically' as I prefer to have the Admin control which users are loaded into the UTM. I prefer to use the 'Advanced' tab in 'Authentication Servers' to 'Prefetch directory users' belonging to specific AD Security Groups.

Once you have synced the users to the UTM, put their "(User Network)" objects into a Network Group and use this Group as the source in your Drop rule.

Any luck with that?

Cheers - Bob
PS Thanks for asking this question. It made me realize that #6 in Rulz needed a fourth item.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BAlfson over 11 years ago

OK, I moved this thread to the Network Protection forum for you.

I normally don't like to use 'Create users automatically' as I prefer to have the Admin control which users are loaded into the UTM. I prefer to use the 'Advanced' tab in 'Authentication Servers' to 'Prefetch directory users' belonging to specific AD Security Groups.

Once you have synced the users to the UTM, put their "(User Network)" objects into a Network Group and use this Group as the source in your Drop rule.

Any luck with that?

Cheers - Bob
PS Thanks for asking this question. It made me realize that #6 in Rulz needed a fourth item.
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data