SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Astaro Authentication Agent for Mac/Linux

    What I am suggesting is you port the "Client Authentication program" and the "Astaro Security Agent" to linux(32/64), BSD(32/64) as well as Mac OS X.

    87 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    14 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  2. Authentication: Support Availablity Groups for Auth Servers

    Make it possible to add additional domain server in the single sign on configuration or allow availability group in the "Server" configuration so that if the first domain is down authentication will fail over to the second domain

    7 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Completed  ·  3 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  3. Authentication: User Creation Streamlining

    After having to create loads of users on a new system I have a couple of change requests that would (somewhat) ease the task of creating users.

    In the dialog for creating new users I would prefer to
    1) not have to enter password twice. It will very often be a cut'n'paste anyway, and if you typo it it is easy to fix.

    2) Remove the default 0.0.0.0 value for static IPs. Now I have to delete the content there before pasting.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
    Completed  ·  Angelo Comazzetto responded

    This feature has been released as part of UTM 9.1. Enjoy!
    (You no longer need to enter authentication credentials 2x in many areas).

  4. User authentication, 2nd Active Directory server

    We need the ability to have more than one Auth server.

    14 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    11 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  5. Authentication: Multiple LDAP Servers

    Would be nice to have more than one for reliability

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  6. Authentication: Automatically Update Backend Users

    In the users definitions, there should be a button for each user that is authenticated by a backend service to check for updated information of that user.
    Additionally, there could be a button which updates all users or maybe a group of users at once.

    Example:
    A user gets a new email-adress in Active Directory. It is supposed to be updated within 5 minutes in the Astaro database, but sometimes it doesn't work. At least this was the case when we did some testing today when the user had to log in to the Enduser Portal before his information was…

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
    Completed  ·  Angelo Comazzetto responded

    As Bob mentions, ASG can automatically prefetch the users on a definable schedule, which solves your request here.

  7. Authentication: Import Additional Email Addresses with Prefetch

    The Active Directory prefetch currently imports only the primary email address for each user. This creates a problem if the user recieves an email under an alias, the message does not show up in their mail manager (user portal) unless you manually add the alias to the account. Also, the Prefetch currently overwrites all user accounts so if you manually add an address to an account, the additional address is lost with the next AD prefetch.

    15 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
    Completed  ·  Angelo Comazzetto responded

    This is possible in UTM9. Using the “create backend users” option, all configured email aliases will be added to the linked user object created on the UTM and visible as aliased mail addresses.

  8. Authentication : SSO with Apple Open Directory

    Add the possibility to use SSO authentication with Apple Open Directory and not just Active Directory for Web filtering authentication.

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Completed  ·  2 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  9. Prefetch directory users at System Startup

    is it possible to config "Prefetch directory users" at System Startup?

    If not, this feature would be great !

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
    Completed  ·  Angelo Comazzetto responded

    While not at startup, like bob says you can already do this at timed intervals if you require it.

  10. Authentication: Remote Group Membership for Remote Access and Packetfilter

    Be able to use eDirectory and Active Directory groups inside the remote access and inside the packetfilter ruleset. This requires the AUA process to add the authenticated ip address of a user to the matching groups he is part of. Customers can use remote authentication and remote group management in every area of the product. This way the config of the ASG must not be modified if a new user gets added to the eDir or AD and therefore reduced the configuration overhead.

    21 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
    Completed  ·  Gert Hansen responded

    HI folks, this has already been added to V7.300. Not sure how it ended up here :). thx Gert

  11. Allow Backend Authentication through user protal

    Instead of forcing people to authenticate to create the account through relay. Allow users to be automatically created when logging into to the user portal. That way instead of assigning each user to the user portal you can assign a group (backend auth users).

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Completed  ·  2 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  12. Astaro Authenication Agent as MSI

    So that we can more easily deploy the AAA, please make it available as an MSI file (in addition to the already-possible .exe format).

    This will allow admins to roll-out in mass operations to many stations and make it easy to get running with the AAA.

    0 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.