Menu

Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

Sign In Register

How to authenticate WAN users before they access the LAN ?

GAGGAG Newbie ✭
in Entry Level Firewalls

Hi,

I have a WEB server on my LAN and need remote users be able to access it from WAN.

Setting up of this scenario is straight forward and it's working already, but what I need is that those remote users get authenticated by my TZ-400 before they reach my WEB server. I don't want my server asking for credentials directly to an unknown user in the WAN zone.

I've read several articles (some original from SonicWALL) explaining the reverse scenary (authenticate LAN users against the FW before the reach the Internet). Some of these articles says that this user authentication can be configured between whatever zones but I can't make it work.

Any advice would be apreciated.

Greetings!!

Category: Entry Level Firewalls
Reply

Best Answers

  • CORRECT ANSWER
    GAGGAG Newbie ✭
    Answer ✓

    @shiprasahu93

Answers

  • GAGGAG Newbie ✭

    Hi,

    Thanks BWC and Shiprasahu93 for your help. I've made already the steps both of you said.

    I have Single-sign-on configured with 2 internal servers that runs SonicWALL SSO Agent.

    I've just disabled SSO Agent on "Users->Settings->Authentication" and know it's running OK, just as I wanted (and as it's supossed to be)

    I don't really need SSO so I'll keep it disabled.

    Thanks for your help!!

  • shiprasahu93shiprasahu93 Moderator

    @GAG,

    Yes, the SSO feature uses NetAPI/ WMI queries to the end machine to find out the username which cannot reach a machine connecting from WAN side. But, good to know that things are working as expected.

    Thanks for confirming. Have a good one!

    Shipra Sahu

    Technical Support Advisor, Premier Services

Sign In or Register to comment.