Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 10 replies
  • Subscribers 1 subscriber
  • Views 1739 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Ad SSO not work on 2008 R2

bonna1
I have the same problem reported here.
is there any solution?

https://community.sophos.com/products/unified-threat-management/astaroorg/f/68/p/59316/219811#219811

https://community.sophos.com/products/unified-threat-management/astaroorg/f/68/t/59316


This thread was automatically locked due to age.
  • 0
    i'm sure astaro is working on one.  2k8 has increased encryption and security requirements...R2 tweaks these even more.

    Owner:  Emmanuel Technology Consulting

    http://etc-md.com

    Former Sophos SG(Astaro) advocate/researcher/Silver Partner

    PfSense w/Suricata, ntopng, 

    Other addons to follow

  • 0 in reply to William Warren
    ok, but you ran a test?
    working properly?

    I do not rule out anything wrong but I followed all the guides and indications of this forum and procedures for proxy authentication still does not work.


    (Sorry if my English is not correct)[:)]
    thanks in advance


    PS: i use ASG v 7.504 and domain is 2008R2 native  (max. func. level)
  • 0
    i have a 2k8 server right now and it works fine..i do NOT have an R2 server active yet.  I just switched from exchange to google for mail so i have to backup 300 gigs of information and redo my network.  Just haven't gotten around to redoing the server yet..[:)]

    Owner:  Emmanuel Technology Consulting

    http://etc-md.com

    Former Sophos SG(Astaro) advocate/researcher/Silver Partner

    PfSense w/Suricata, ntopng, 

    Other addons to follow

  • 0 in reply to William Warren
    Now I have proof that my configuration is correct: I run all steps using a 2003 R2 domain and everything works perfectly.
    problems are only with 2008 R2.

    How do I report a bug?
  • 0
    This is an often reported issue.  It's something with 2k8's higher security requireme3nts that Astaro(and linux in general) haven't caught up to yet.  Talk to your reseller..that'll be the best way.

    Owner:  Emmanuel Technology Consulting

    http://etc-md.com

    Former Sophos SG(Astaro) advocate/researcher/Silver Partner

    PfSense w/Suricata, ntopng, 

    Other addons to follow

  • 0 in reply to William Warren
    Try using the FQDN to connect to the proxy; in the V8 Beta thread I read that 2K8R2 further restricts NTLM security, but Kerberos works fine.  If you don't use a FQDN to connect to the proxy, NTLM is what is used to authenticate (and fail, in your case).

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

  • 0
    v8 beta?  where?

    Owner:  Emmanuel Technology Consulting

    http://etc-md.com

    Former Sophos SG(Astaro) advocate/researcher/Silver Partner

    PfSense w/Suricata, ntopng, 

    Other addons to follow

  • 0
    The Version 8 Public Beta started today. The R2 patches didn't make it in the version released today, but will be in one of the next releases - probably mid-april.
  • 0
    I have tried specifying the FQDN of the gateway in the proxy settings, but it does not seem to work either. Windows 7 client, Windows 2008 R2 D.C. and ASG 7.504 is what we were testing.
    Are there other requirements besides using the FQDN?
    Also - edu domains are detting pushed by EduCause to use DNSSEC. Does Astaro already handle DNSSEC, or when is it planned to support it?
  • 0
    server 2008r2 and 7.5x dont' work well together.  Search the forums this is an oft reported issue.

    Owner:  Emmanuel Technology Consulting

    http://etc-md.com

    Former Sophos SG(Astaro) advocate/researcher/Silver Partner

    PfSense w/Suricata, ntopng, 

    Other addons to follow