I have a problem with my Astaro ASG320, the firewall is running version 7.511 (yea, i know, i should update it, but that unfortunately is a project a few month out in the future)
But the problem i have atm. is as follows, so far we have created the users who needed VPN access manually in the firewall, i want this to be done simply by adding a AD user to a security group (let's call the group RemoteAccess). When a user then tries to download the Astaro VPN client or tries to log on to the web interface, it should check with my DC if this user is a member of the RemoteAccess group.
If a user then isen't a member of that group anymore, the VPN should not allow him to connect to the firewall.
_________________________
So far, all the things i have tried has been with limited success.
What i have tried so far is as following.
under "Users-->Authentication --> Global Settings" did i enable the "create users automatically", under the tab Servers i created a connection to one of our DC's, i have added a picture of that settings here. Then under the tab "Advanced" i enabled the "Enable Backend sync on login" feature.
All this works.. sorta.. Since i get two problems, there is no way i can decide what users should be alloved to log onto the VPN, if the user exist in my AD, they get alloved to make a VPN connection.
second. If i delete a user, from my first test, it seems like the users cannot log on the VPN anymore, but the user profile itself still exists on the Firewall..
Can anyone help me out here?
\Martin
This thread was automatically locked due to age.
