?
Solved

Anyone having trouble with authenticating using SSO on WatchGuard?

Posted on 2011-02-15
4
Medium Priority
?
1,678 Views
Last Modified: 2012-05-11
The authentication connection doesn't last and redirects my users to the WG login screen. Everything looks to be configured properly but we're getting real sporadic behavior. Most of the time, when the user either logs out or closes the web browser and comes back in, the authentication works. This is supposed to be automatic and transparent to the user....
0
Comment
Question by:jhaysbns
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 32

Expert Comment

by:dpk_wal
ID: 34903612
0
 

Accepted Solution

by:
jhaysbns earned 0 total points
ID: 34929610
Thanks, but it ended up being a "bug" in the 11.4 authentication. If you have both SSO and the Redirect turned on (which you were supposed to be able to do in 11.4), it causes the above problem. As long as your Proxy rules and security are strong and granular, turning off the Redirect should not cause any unwanted access.

As soon as I unchecked the Redirect option, my customers have been working flawlessly and the authentication has worked very smooth in the background.
0
 
LVL 32

Expert Comment

by:dpk_wal
ID: 34932351
Thank you for the update; would be helpful for the community! :)
0
 

Author Closing Comment

by:jhaysbns
ID: 34959201
I accepted my solution because it was what I found out through troubleshooting and talked to WG support directly.
0

Featured Post

Ransomware Attacks Keeping You Up at Night?

Will your organization be ransomware's next victim?  The good news is that these attacks are predicable and therefore preventable. Learn more about how you can  stop a ransomware attacks before encryption takes place with our Ransomware Prevention Kit!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…
If you’ve ever visited a web page and noticed a cool font that you really liked the look of, but couldn’t figure out which font it was so that you could use it for your own work, then this video is for you! In this Micro Tutorial, you'll learn yo…
Suggested Courses

764 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question