Solved

Sonicwall NSA 3500 - Occasional Users end up in “Default” CFS group

Posted on 2012-03-13
12
862 Views
Last Modified: 2012-03-13
At our school we have 3 separate filtering lists. Pupils, Staff and Default. The CFS group they end up in should be defined by their AD security group (So if they are staff, they get the less restricted Staff list).

On occasions a member of staff seems to end up getting the very restricted ‘Default’ group. Logging off/on does not help.

What might be causing this problem?
0
Comment
Question by:stalbansschool
  • 7
  • 5
12 Comments
 
LVL 16

Expert Comment

by:Syed_M_Usman
Comment Utility
check your NSA-3500 firmware, you can also verify your doamin computers.
in my experience if you use Win xp computer with win 2008 DC on network sometimes this problem occurs.... may i know what OS you are facing this problem?

also please recheck your settings;;; http://www.fuzeqna.com/sonicwallkb/consumer/kbdetail.asp?kbid=7782

i would like to know below;

Your DC OS
How many subnets you have?
Problemetic desktop's OS
do you use any CA?
0
 

Author Comment

by:stalbansschool
Comment Utility
We are using Windows 7 on all of our clients

We have 3 x Server 2008 R2 DC's

Firmware version is:  SonicOS Enhanced 5.8.0.3-40o

I am not sure what 'CA' is an abbreviation for?
0
 

Author Comment

by:stalbansschool
Comment Utility
It looks like we can certainly start by looking at updating the firmware (I have just downloaded an updated version 5.8.1.5.

I have not done this before, how long is the device likley to be offline for?
0
 
LVL 16

Expert Comment

by:Syed_M_Usman
Comment Utility
180 Seconds only....

latest should be...SonicOS Enhanced 5.8.1.0-30o
0
 

Author Comment

by:stalbansschool
Comment Utility
Is this likley to cause the problem?
0
 
LVL 16

Expert Comment

by:Syed_M_Usman
Comment Utility
Actually NO, but its better to have latest firmware. This may resolve this issue.
Above mention issue could be trust issue, and this type of behaviour is unexpected. plz try to make sure you have configured the Custom CFS as per the above mention link.
0
Better Security Awareness With Threat Intelligence

See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

 

Author Comment

by:stalbansschool
Comment Utility
Ok, I will read through the link that you posted.  However, we use SSO and I notice that the guide you posted is for when you dont use SSO
0
 

Author Comment

by:stalbansschool
Comment Utility
I have noticed that in Users >> Settings

The Authentication Method we are using is "RADIUS + Local USers"

and as mentioned above, we are using the Single Sign-on mehtod "SonicWALL SSO Agent"

Everything else seems to be setup correctly
0
 
LVL 16

Accepted Solution

by:
Syed_M_Usman earned 500 total points
Comment Utility
That could be a issue,,, try as per the guide line...

one more thing dont change anything in live network, the setup recomended only after workinh hours  +   take your setting backup and save on your laptop/desktop... so you can go back....
0
 

Author Comment

by:stalbansschool
Comment Utility
Why wouldnt we want to use RADIUS?
0
 

Author Closing Comment

by:stalbansschool
Comment Utility
excellent comment, expert was exactly correct, this was caused by me not having LDAP + Local selected
0
 
LVL 16

Expert Comment

by:Syed_M_Usman
Comment Utility
Thank you for nice Comments :)
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
Are you one of those front-line IT Service Desk staff fielding calls, replying to emails, all-the-while working to resolve end-user technological nightmares? I am! That's why I have put together this brief overview of tools and techniques I use in o…
Excel styles will make formatting consistent and let you apply and change formatting faster. In this tutorial, you'll learn how to use Excel's built-in styles, how to modify styles, and how to create your own. You'll also learn how to use your custo…
Illustrator's Shape Builder tool will let you combine shapes visually and interactively. This video shows the Mac version, but the tool works the same way in Windows. To follow along with this video, you can draw your own shapes or download the file…

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now