Sophos Active Directory

Posted on  by admin

Use the Configuration > System > Active Directory page to configure access to your Active Directory server, which allows the appliance to use Active Directory user and group information.

Sophos UTM What to do Go to Definitions & Users Authentication Services Single Sign-On and enter the required information as shown in the image below: After successfully joined the AD SSO, Sophos UTM updates its status: Related information. Sophos UTM: How to troubleshoot issues when joining the UTM to an Active Directory domain; Feedback. In this video i will show you how to Active Directory Integration With Sophos XG Firewall Version 18. #sophosfirewall #sophosxg #sophosadsync #adintegrate #. Sophos Firewall Local and Active Directory Users. Navigate to Authentication Users; Click on a user to view User Details Local Users. Local Users can have their Password and Policy: Group field changed. Active Directory Users. Active Directory authenticated users cannot change their Password within the XG and the Policies: Group field is.

Important It is essential that the time on your Active Directory server is synchronized with the time on your appliance. We suggest that you use the network time protocol on your Active Directory server with as the NTP server, which is the NTP server pool used by the appliance. If you use a different NTP server for your Active Directory server, you must configure the appliance to use the same NTP server, which is configured on the Configuration > System > Time Zone page.

Sophos Active Directory Sync Interval

Active Directory authentication options are configured on the System: Authentication page. You can authenticate users with a single sign on, through a captive portal, or use a combination of the two. By creating authentication profiles and connection profiles, you can specify different authentication methods for different connections. For more information, see “Authentication”.

Active Directory synchronization allows administrators to implement a service that maps users and group from Active Directory to Sophos Central

Sophos Central AD Sync utility will import the following object from Active Directory:



*Email Address

*Group and the members of each group

*Devices and Group Discovery (Future feature, not yet available)

Setup/install the AD Sync

  • Login to Sophos Central by Admin account
  • If you do not have Sophos Central account, create a Sophos Central account
  • On the Sophos Central Admin, Global Settings -> General Settings -> AD Sync Settings/Status -> Download the installer
  • Save the file and run the Sophos Central AD Sync Utility Setup on AD
  • Click Next to accept End-User License Agreement
  • Click Install to begin the installation
  • Select Launch Sophos Central AD Sync Utility -> Click Finish

Sophos Xg Active Directory Authentication

  • When finish the installation, open Acive Directory Synchronization Setup -> Sophos Credentials tab -> import your Sophos Central account credentials -> Click Next
  • On tab AD Configuration, specify your Active Directory LDAP server and credentials -> Click Next
  • On tab Sync Schedule, define the times at which the synchronized will be performed

Sophos Active Directory Sync

  • To synchronize immediately, Click Preview and Sync

Sophos Ad Sync Download

Sophos Active Directory
  • Review and Approve Changes and Continue

Sophos Active Directory Sync Setup

  • Click Exit once you are done