This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Webfiltering transparent with AD SSO

Hey,

I've got an UTM220 and I want to get webfiltering transparent with AD SSO.

First if i put this to Standard mode, everything is fine, it's just the transparent mode, thats not working.

If it's set to transparent, I've got an error in the brower that URL:
http://myutm/auth?u=aHR0cDovL3d3dy5nb29nbGUuZjsahd
is not responding.

Also I see Drops on port 80 in the Firewall Log

What did I Forget?

Thanks
Tom

This thread was automatically locked due to age.

0 JamesE over 10 years ago

Possible things are:

1. Joined to the Domain: Required for SSO
2. Make sure the Backend Users are Sync'd: should see Remotely authenticated and synced from adirectory under the users who are using AD SSO
3. Web Protection -> Filtering Options -> Misc -> Transparent Mode Active Directory Single Sign On. Make sure this is not checked or is set to the correct incoming interface.
Cancel
Vote Up 0 Vote Down

Cancel
0 tomstolz over 10 years ago in reply to JamesE

1) -> is joined
2) ->  Remotely authenticated [User data updated from backend automatically]
synced from adirectory
3) ->  nothing ist checked

Additional Info: I didn't do anything except:
1) joining
2) Setting AD-Servers + Syncing
3) Webfilter: AD-SSO transparent -> allow all
   (No exceptions, no MISC Config)
4) NO Firewall Config is done

Also I can see in the Webfilter LOG that no User an AD_Domain are sent from the Browser
neither IE 11  nor FF 31  (both configured as proposed in KB)
if I browse the http://fqdn-from-utm  it ends up with "Timeout"
I am getting Packet Drops on the UTM for Port 80
Cancel
Vote Up 0 Vote Down

Cancel