SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Authentication: Multiple Single Sign-On (SSO) Servers

    It would be nice to choose a server group with more than 1 SSO Server to authenticate HTTP profiles.

    57 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    9 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  2. Authentication: Proxy for Authenticating to Local Resources

    Implement an authentication proxy to access a local subnet or vpn subnet for a configurable time.

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  3. Authentication: SSL-Encryption for Proxy Fallback Login

    Please make the proxy authentication encrypted if the client does not support eDirectory SSO. Actually user and password are sent in human-readable cleartext.

    Same thing for the transparent proxy with authentication. The login form is provided via http... Why not https?

    27 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  7 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  4. active directory re-authentication

    web security should reauthenticate against active directory every 10-30min so that when (guest) account is locked they are unable to get through web security

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  5. Authentication: Additional LDAP Attributes Support

    Add a configuration option for adding a query filter attribute for additional email-addresses for user settings.
    like searching for email destination (|(mail=%s)(otherMailbox=%s))

    Its easier to maintain email-aliases like info@domain.tld in central directory.

    Also, other attributes like First and Last name should be selectable if possible

    18 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  6. Authentication: Add new user to existing group

    When creating new user it would be nice to be able to put the new user in an existing group as part of the creation process.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  7. L2TP/RADIUS use PAP flag

    We use an openldap server to maintain our user accounts for a large infrastructure of Linux hosts. Because the unix passwords are hashed with MD5, our radius server has to have the plaintext password passed to it to perform authentication against our LDAP server - we can not use any of the challenge/response type systems for authentication.

    The LDAP/Radius authentication system on the ASG expects to be able to use these challenge/response authentication protocols, and does not currently provide anyway to specify which to use from the UI. I can hack the /var/chroot-ipsec/ppp/options-default file and add stanzas like:

    refuse-eap
    refuse-chap …

    9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  8. Authentication: Group Support for Radius Authentication

    Add Group support for Radius authentication by defining an backend match for a certain Radius attribute like 'NAS-Identifier' if this is set to a predefined value and the request succedes, than the user is also mapped to this group. restore ASG V6 functionality and better integrate with radius installations

    18 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  9. Authentication: Improved LDAP browser

    Implement a LDAP browser, that can be used to configure eDirectory, Active Directory and LDAP. Since V7 Astaro includes an LDAP browser for eDirectory. As more and more users use AD we should create a generic LDAP browser to show the complete AD tree and enable the admin to browse and select users/groups using drag'n'drop similar or identical to eDir.. The admin of an AD gets the same benefit as eDir users by massivly improve the timeconsuming and error-prone writing of LDAP DN to specify users and groups

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
1 2 3 4 5 6 8 Next →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.