SSL VPN before authentication
Possibility to do VPN before user login to OS.
Road warriors with expired or lost password has the sent pc to admin, otherwise they cannot set new password within Active Directory.
With Fortinet you can do VPN first and then login against AD, where is new (changed by admin) password.
We have lost at least 7 UTM deals because of this.
XG Fan commented
these should be merged together:
Palo-Alto also supports this.
Had I known Sophos did not, we would not have the XGs, we would have a palo-alto firewall instead.
Kamal Patel commented
we need this functionality asap in sophos, in Fortinet client this is beauty of this feature where user can directly login in domain before login in PC.
i Have also fortinet Firewall and we use it our another premises but i have complete sohphos enterprise security product and we need this feature as soon as possible so we can manage all the external employees directly from HO with this feature.