This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How do we connect our UTM to authenticate AD users by group for SSL VPN?

How do we connect our UTM to authenticate AD users, but only users in a specific group? The goal is to add all the AD accounts to a group, and then only allow those accounts to use the SSL VPN. I have been unable to come across this specific scenario, as I am concerned about mistakenly populating the UTM with our entire enterprise AD user accounts.

Thank you

This thread was automatically locked due to age.

0 BAlfson over 10 years ago
Hi, tv, and welcome to the User BB!

There's no automatic way to delete a User from the UTM, but the rest is easily done.

Here's an example:
Create a Security Group in AD named "VPN Users" and populate it there
In WebAdmin, on the 'Advanced' tab of 'Definitions & Users >> Authentication Services', configure prefetch with a new (+) Backend Group "VPN Users AD" based on "VPN Users"
Create an SSL VPN Profile with "VPN Users AD" in 'Users and Groups'

Cheers - Bob
Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel