Solved

Anyone having trouble with authenticating using SSO on WatchGuard?

Posted on 2011-02-15
4
1,654 Views
Last Modified: 2012-05-11
The authentication connection doesn't last and redirects my users to the WG login screen. Everything looks to be configured properly but we're getting real sporadic behavior. Most of the time, when the user either logs out or closes the web browser and comes back in, the authentication works. This is supposed to be automatic and transparent to the user....
0
Comment
Question by:jhaysbns
  • 2
  • 2
4 Comments
 
LVL 32

Expert Comment

by:dpk_wal
ID: 34903612
0
 

Accepted Solution

by:
jhaysbns earned 0 total points
ID: 34929610
Thanks, but it ended up being a "bug" in the 11.4 authentication. If you have both SSO and the Redirect turned on (which you were supposed to be able to do in 11.4), it causes the above problem. As long as your Proxy rules and security are strong and granular, turning off the Redirect should not cause any unwanted access.

As soon as I unchecked the Redirect option, my customers have been working flawlessly and the authentication has worked very smooth in the background.
0
 
LVL 32

Expert Comment

by:dpk_wal
ID: 34932351
Thank you for the update; would be helpful for the community! :)
0
 

Author Closing Comment

by:jhaysbns
ID: 34959201
I accepted my solution because it was what I found out through troubleshooting and talked to WG support directly.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question