We have been using Sophos UTM 9.3 for well over a year now, a pair of SG210 in an active/passive standby. We have been using the SSL VPN for remote access on our user's machines. This has been working fine until recently for a few users, which are now required to "Run as Administrator" If they try to connect the process fails to add the routes and assign the IP to the TAP adapter.
Again, this has just popped up out of the blue. The users have always been local admins on their machines. Mix of Win7, 8/8.1 and 10.
Snippet of log..
-----------------------------------
Fri Apr 22 16:06:44 2016 ERROR: Windows route add command failed [adaptive]: returned error code 1
Fri Apr 22 16:06:44 2016 C:\windows\system32\route.exe ADD 10.2.0.0 MASK 255.255.0.0 192.168.251.21
Fri Apr 22 16:06:44 2016 ROUTE: route addition failed using CreateIpForwardEntry: Access is denied. [status=5 if_index=3]
Fri Apr 22 16:06:44 2016 Route addition via IPAPI failed [adaptive]
Fri Apr 22 16:06:44 2016 Route addition fallback to route.exe
Fri Apr 22 16:06:44 2016 env_block: add PATH=C:\Windows\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
-----------------------------------
We've tried adding them to the [Network Configuration Operators] group in Windows with no luck.
Thanks for any ideas.
-Nate
This thread was automatically locked due to age.
