Comments
-
If you have configured "autodiscover.domain.com" as the "Exchange autodiscover FQDN" and public DNS is resolving "autodiscover.domain.com" to SMA, you can test the Autodiscover response using the testing tools provided by Microsoft. Just accessing autodiscover URL (HTTP GET method) will not give you the autodiscover…
-
@ASTech2020 - you can create one device profile with multiple device IDs which will be much more easier to maintain compared to multiple device profiles, unless you have specific reason to do so. In order to test whether the device IDs are being effective or not, you can create new ActiveSync device profile without any…
-
@ASTech2020 , you can allow/restrict ActiveSync access based on Device IDs too. For this, you need to configure a Device Profile with all the devices (IDs) that you want to allow. Steps are, On AMC, navigate to End Point Control (left pane) -> Profiles -> Edit -> New -> Exchange ActiveSync. On CMC, navigate to Managed…
-
@Doug_Daniel I agree that messages like this, which doesn't need user response, should not block the tunnel establishment. If you do not wish to disable this expiry notification, you could reduce the number of days for prompting (maybe 7?) - that should reduce the impact for now. Unfortunately, I do not see other ways to…
-
I do not think WorkPlace will be removed, no such plans as far as I know.
-
@Nat that is not supposed to be "Legacy WorkPlace", instead should have been "Legacy Connect Tunnel and Connect Tunnel Service". Thanks for bringing it up, have notified the concerned team.
-
Try this, https://www.sonicwall.com/techdocs/pdf/sonicwall-secure-mobile-access-12-4-administration-guide.pdf
-
SMA1000 supports Exchange Activesync for a decade now and many customers are using it. Administrator guide contains instructions to configure it. You can also reach our technical support team who should be able to help you on this.
-
@PSD 12.4.1 will support Groups for SAML authentication servers (Azure in your case). On 12.4.0 and below, if you have your Active Directory on your internal network you can use it for group authorization by enabling group affinity - refer "Enabling Group Affinity Checking in a Realm" section under Admin guide to know more…
-
@Nat , license should be released within 15-20 minutes when idle, I hope that is the case in your appliance too. For your requirement, you can configure SAML Logout URL as https://a.b.c.d/__extraweb__logoff; this should logout SMA1000 user immediately.
-
@Nat , SMA1000's SAML IdP doesn't have a dedicated SAML Logout endpoint currently. Could you share how you are planning to use SAML Logout option? That will help me to understand what you are planning to achieve, and suggest if there are alternatives. I don't think it will be hard to do SAML Logout, but never had a…
-
@TAC , could be that appliance does not have full cert-chain, not sure. Could you reach our technical support over phone to import full cert-chain on to the appliance and try again?
-
@TAC, do you have any (local?) DNS server that resolves api.smsbroadcast.com.au to different IP than what seen at https://dnschecker.org/all-dns-records-of-domain.php?query=api.smsbroadcast.com.au&rtype=ANY? I do not see self-signed certificate in the chain when hitting https://api.smsbroadcast.com.au/api-adv.php from…
-
@TAC, based on the information available on below site (assuming this is your SMS provider), Log into appliance AMC, navigate to System Configuration > Services > SMS > Configure. Check "Enable SMS" checkbox and select provider as "Manual". Select HTTP Method as "POST". Enter the URL as…
-
Hi @TAC, You can refer "Configuring SMS based authentication" section of 12.4.0 Administrator guide to configure it. You will require HTTP API guide given by your SMS provider for this. 12.4.0 Administrator guide is located at…