{"id":22100,"date":"2019-10-02T12:00:00","date_gmt":"2019-10-02T11:00:00","guid":{"rendered":"https:\/\/www.avanet.com\/kb\/add-active-directory-to-sophos-firewall-sfos\/"},"modified":"2024-10-23T10:15:01","modified_gmt":"2024-10-23T09:15:01","slug":"how-to-integrate-sophos-firewall-with-active-directory","status":"publish","type":"kb","link":"https:\/\/www.avanet.com\/en\/kb\/how-to-integrate-sophos-firewall-with-active-directory\/","title":{"rendered":"Add Active Directory to Sophos Firewall (SFOS)"},"content":{"rendered":"\n<p>This article shows how to add an Active Directory server to Sophos Firewall. This guide assumes a Sophos Firewall with the SFOS operating system.<\/p>\n\n<p>Von Sophos gibt es mittlerweile auch ein Video, welches die Sache gut veranschaulicht.<\/p>\n\n<figure class=\"wp-block-embed is-type-video is-provider-youtube wp-block-embed-youtube wp-embed-aspect-16-9 wp-has-aspect-ratio\"><div class=\"wp-block-embed__wrapper\">\n<iframe loading=\"lazy\" title=\"Sophos Firewall v21: What&#039;s New\" width=\"1290\" height=\"726\" src=\"https:\/\/www.youtube.com\/embed\/VR_abxYdLEQ?feature=oembed\" frameborder=\"0\" allow=\"accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture; web-share\" referrerpolicy=\"strict-origin-when-cross-origin\" allowfullscreen><\/iframe>\n<\/div><figcaption class=\"wp-element-caption\">Sophos Firewall &#8211; Active Directory Server hinzuf\u00fcgen<\/figcaption><\/figure>\n\n<h2 class=\"wp-block-heading\" id=\"h-vorbereitung\">Preparation<\/h2>\n\n<p>Log in to your Sophos Firewall (SFOS) as an administrator and go to <code>Authentifizierung<\/code> &gt; <code>Server<\/code> from the menu. Then click the blue button <code>Hinzuf\u00fcgen<\/code> to add a new server. On this page we will now go through the settings in <strong>12 steps<\/strong> and make the necessary entries.<\/p>\n\n<p>Also note the following graphic with the steps drawn in so that you can follow the instructions more easily:<\/p>\n\n<figure class=\"wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-1 is-layout-flex wp-block-gallery-is-layout-flex\">\n<figure class=\"wp-block-image size-large\"><a href=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory.jpg\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"791\" data-id=\"15823\" src=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-1024x791.jpg\" alt=\"Sophos Authentication Server Configuration\" class=\"wp-image-15823\" srcset=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-1024x791.jpg 1024w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-64x49.jpg 64w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-300x232.jpg 300w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-600x464.jpg 600w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-768x593.jpg 768w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-16x12.jpg 16w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory.jpg 1442w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/a><\/figure>\n<\/figure>\n\n<h2 class=\"wp-block-heading\">1. server type<\/h2>\n\n<p>There are several authentication servers that you can add:<\/p>\n\n<ul class=\"wp-block-list\">\n<li>LDAP Server<\/li>\n\n\n\n<li>Active Directory<\/li>\n\n\n\n<li>Radius Server<\/li>\n\n\n\n<li>TACACS+ Server<\/li>\n\n\n\n<li>eDirectory<\/li>\n<\/ul>\n\n<p>In this guide we explain the most used method: <code>Active Directory<\/code>.<\/p>\n\n<h2 class=\"wp-block-heading\">2. server name<\/h2>\n\n<p>You are completely free to choose the server name. We often use the hostname of the server here.<\/p>\n\n<h2 class=\"wp-block-heading\">3. server IP\/domain<\/h2>\n\n<p>Enter the IP address of the domain controller here.<\/p>\n\n<h2 class=\"wp-block-heading\">4. port<\/h2>\n\n<p>The port depends on the connection security, which you have to define further down at point 8. For example, if you select SSL\/TLS there, the port automatically changes to 636. We have tested the following combinations and they would work:<\/p>\n\n<ul class=\"wp-block-list\">\n<li>Port:\u00a0<strong>389<\/strong>\u00a0(LDAP) \u2192 Verbindungssicherheit:\u00a0<strong>Simple<\/strong>\u00a0<em>(Wird unter Punkt 8 definiert)<\/em><\/li>\n\n\n\n<li>Port:\u00a0<strong>636<\/strong>\u00a0(LDAPS) \u2192 Verbindungssicherheit:\u00a0<strong>SSL \/ TSL<\/strong>\u00a0<em>(Wird unter Punkt 8 definiert)<\/em><\/li>\n<\/ul>\n\n<h2 class=\"wp-block-heading\">5. NetBIOS domain<\/h2>\n\n<p>To find out the NetBIOS domain, the <strong>Active Directory Users and Computers<\/strong> program can help you. If you type &#8220;Active&#8221; in the search window on the AD via the Windows Start menu, the entry should already appear.<\/p>\n\n<figure class=\"wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-2 is-layout-flex wp-block-gallery-is-layout-flex\">\n<figure class=\"wp-block-image size-large\"><a href=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-domain-netbios.jpg\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"861\" data-id=\"15825\" src=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-domain-netbios-1024x861.jpg\" alt=\"Find out NetBIOS name on Active Directory\" class=\"wp-image-15825\" srcset=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-domain-netbios-1024x861.jpg 1024w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-domain-netbios-64x54.jpg 64w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-domain-netbios-300x252.jpg 300w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-domain-netbios-600x504.jpg 600w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-domain-netbios-768x645.jpg 768w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-domain-netbios-1536x1291.jpg 1536w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-domain-netbios-14x12.jpg 14w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-domain-netbios.jpg 1542w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/a><\/figure>\n<\/figure>\n\n<p>Now right-click on the domain name and select <code>Eigenschaften<\/code>. In my example, the domain name would be <code>avanet.local<\/code>. In the screenshot above you can see the domain name framed in red. So the NetBIOS domain in our case would be <strong>AVANET<\/strong>.<\/p>\n\n<h2 class=\"wp-block-heading\">6. ADS username<\/h2>\n\n<p>Specify here a user who has the right to read the AD structure. In productive environments, we recommend using a service user here rather than the domain administrator. For this documentation, we have only used the <strong>administrator<\/strong> for testing purposes, as he certainly has enough permissions.<\/p>\n\n<h2 class=\"wp-block-heading\">7. password<\/h2>\n\n<p>Add the password for the ADS user specified in point 6.<\/p>\n\n<h2 class=\"wp-block-heading\">8. connection security<\/h2>\n\n<p>As described in point 4, the connection security is related to the port. By default, the <code>Simple<\/code> option works here in most cases. If your domain controller is set differently, you surely know what to do here yourself. The following options are possible:<\/p>\n\n<ul class=\"wp-block-list\">\n<li>Simple<\/li>\n\n\n\n<li>SSL\/TLS<\/li>\n\n\n\n<li>STARTTLS<\/li>\n<\/ul>\n\n<h2 class=\"wp-block-heading\">9. show name attribute<\/h2>\n\n<p>Under this item you can determine how the user names should be displayed on your XG Firewall. You can control this via the so-called &#8220;Display-Name attribute&#8221;. The following attributes are available to you:<\/p>\n\n<ul class=\"wp-block-list\">\n<li>displayName<\/li>\n\n\n\n<li>sAMAccountName<\/li>\n\n\n\n<li>userPrincipalName<\/li>\n\n\n\n<li>name<\/li>\n<\/ul>\n\n<p>To find out what formatting is behind these terms, you can again use the <strong>Active Directory Users and Computers<\/strong> program to help you. In order to see all the attributes, you must have the <strong>Advanced Features<\/strong> view enabled.<\/p>\n\n<figure class=\"wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-3 is-layout-flex wp-block-gallery-is-layout-flex\">\n<figure class=\"wp-block-image size-large\"><a href=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-view-details.jpg\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"768\" data-id=\"15826\" src=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-view-details-1024x768.jpg\" alt=\"Activate view for the advanced features\" class=\"wp-image-15826\" srcset=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-view-details-1024x768.jpg 1024w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-view-details-64x48.jpg 64w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-view-details-300x225.jpg 300w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-view-details-600x450.jpg 600w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-view-details-768x576.jpg 768w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-view-details-1536x1152.jpg 1536w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-view-details-16x12.jpg 16w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-view-details.jpg 2048w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/a><\/figure>\n<\/figure>\n\n<p>In the image gallery below you can take a closer look at the attributes listed above using our example.\n<\/p>\n<figure class=\"wp-block-gallery has-nested-images columns-2 is-cropped wp-block-gallery-4 is-layout-flex wp-block-gallery-is-layout-flex\">\n<figure class=\"wp-block-image size-large\"><a href=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-samaccountname.jpg\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"768\" data-id=\"15828\" src=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-samaccountname-1024x768.jpg\" alt=\"Sophos Firewall - authentication server Active Directory attribute sAMAccountName\" class=\"wp-image-15828\" srcset=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-samaccountname-1024x768.jpg 1024w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-samaccountname-64x48.jpg 64w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-samaccountname-300x225.jpg 300w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-samaccountname-600x450.jpg 600w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-samaccountname-768x576.jpg 768w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-samaccountname-1536x1152.jpg 1536w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-samaccountname-16x12.jpg 16w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-samaccountname.jpg 2048w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/a><\/figure>\n\n\n\n<figure class=\"wp-block-image size-large\"><a href=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-displayname.jpg\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"768\" data-id=\"15827\" src=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-displayname-1024x768.jpg\" alt=\"Sophos Firewall - authentication server active directory attribute userPrincipalName\" class=\"wp-image-15827\" srcset=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-displayname-1024x768.jpg 1024w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-displayname-64x48.jpg 64w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-displayname-300x225.jpg 300w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-displayname-600x450.jpg 600w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-displayname-768x576.jpg 768w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-displayname-1536x1151.jpg 1536w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-displayname-16x12.jpg 16w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-displayname.jpg 2048w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/a><\/figure>\n\n\n\n<figure class=\"wp-block-image size-large\"><a href=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-userprincipalname.jpg\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"768\" data-id=\"15829\" src=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-userprincipalname-1024x768.jpg\" alt=\"Sophos Firewall - authentication server active directory attribute userPrincipalName\" class=\"wp-image-15829\" srcset=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-userprincipalname-1024x768.jpg 1024w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-userprincipalname-64x48.jpg 64w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-userprincipalname-300x225.jpg 300w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-userprincipalname-600x450.jpg 600w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-userprincipalname-768x576.jpg 768w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-userprincipalname-1536x1152.jpg 1536w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-userprincipalname-16x12.jpg 16w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-userprincipalname.jpg 2048w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/a><\/figure>\n\n\n\n<figure class=\"wp-block-image size-large\"><a href=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-name.jpg\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"768\" data-id=\"15830\" src=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-name-1024x768.jpg\" alt=\"Sophos Firewall - authentication server active directory attribute name\" class=\"wp-image-15830\" srcset=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-name-1024x768.jpg 1024w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-name-64x48.jpg 64w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-name-300x225.jpg 300w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-name-600x450.jpg 600w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-name-768x576.jpg 768w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-name-1536x1152.jpg 1536w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-name-16x12.jpg 16w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-name.jpg 2048w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/a><\/figure>\n<\/figure>\n\n<h2 class=\"wp-block-heading\">10. email address attribute<\/h2>\n\n<p>By default and in most cases, the attribute <code>mail<\/code> is used here. This field is optional and only relevant if your XG Firewall is also used as email server via &#8220;Mail Transfer Agent&#8221; (MTA). For this, the XG should already know the email addresses of the users, which is very helpful for the &#8220;Email Quarantine Report&#8221;, for example.<\/p>\n\n<p>On the AD, of course, the e-mail addresses of the users must be stored in their profile. To check this, switch back to the <strong>Active Directory Users and Computers<\/strong> program and call up a user&#8217;s properties. An entry should now appear there in the attribute list at <code>mail<\/code>.<\/p>\n\n<figure class=\"wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-5 is-layout-flex wp-block-gallery-is-layout-flex\">\n<figure class=\"wp-block-image size-large\"><a href=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-mail.jpg\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"768\" data-id=\"15831\" src=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-mail-1024x768.jpg\" alt=\"Sophos Firewall - authentication server active directory attribute mail\" class=\"wp-image-15831\" srcset=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-mail-1024x768.jpg 1024w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-mail-64x48.jpg 64w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-mail-300x225.jpg 300w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-mail-600x450.jpg 600w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-mail-768x576.jpg 768w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-mail-1536x1152.jpg 1536w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-mail-16x12.jpg 16w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-mail.jpg 2048w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/a><\/figure>\n<\/figure>\n\n<h2 class=\"wp-block-heading\">11. domain name<\/h2>\n\n<p>You can also find out the name of your domain using the <strong>Active Directory Users and Computers<\/strong> program. In the screenshot below you can see where you can read the name. In our example, this would be <strong>avanet.local<\/strong>.<\/p>\n\n<figure class=\"wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-6 is-layout-flex wp-block-gallery-is-layout-flex\">\n<figure class=\"wp-block-image size-large\"><a href=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-domain-name.jpg\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"768\" data-id=\"15832\" src=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-domain-name-1024x768.jpg\" alt=\"Display domain name on Active Directory\" class=\"wp-image-15832\" srcset=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-domain-name-1024x768.jpg 1024w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-domain-name-64x48.jpg 64w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-domain-name-300x225.jpg 300w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-domain-name-600x450.jpg 600w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-domain-name-768x576.jpg 768w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-domain-name-1536x1152.jpg 1536w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-domain-name-16x12.jpg 16w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-domain-name.jpg 2048w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/a><\/figure>\n<\/figure>\n\n<h2 class=\"wp-block-heading\">12. search queries<\/h2>\n\n<p>In this field you specify the path to the OU where the users and groups are located. If you want to search the whole structure, you can enter: <code>DC=avanet,DC=local<\/code>. In our example, if you want to specify only the users in the &#8220;Avanet &gt; User&#8221; OU, the entry would look like this:  <code>OU=User,OU=Avanet,DC=avanet,DC=local<\/code><\/p>\n\n<p>You can also look up the composition of this path yourself on the Active Directory. To do this, open the <strong>Active Directory Users and Computers<\/strong> program again and access the properties of your Organizational Unit (OU). After that, search in the attributes for <code>distinguishedName<\/code>. In the following screenshot you can see how we did it in the &#8220;User&#8221; OU.<\/p>\n\n<figure class=\"wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-7 is-layout-flex wp-block-gallery-is-layout-flex\">\n<figure class=\"wp-block-image size-large\"><a href=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-search-queries-distinguishedname.jpg\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"768\" data-id=\"15833\" src=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-search-queries-distinguishedname-1024x768.jpg\" alt=\"Display the 'distinguishedName' attribute in the properties of the Organizational Unit.\" class=\"wp-image-15833\" srcset=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-search-queries-distinguishedname-1024x768.jpg 1024w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-search-queries-distinguishedname-64x48.jpg 64w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-search-queries-distinguishedname-300x225.jpg 300w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-search-queries-distinguishedname-600x450.jpg 600w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-search-queries-distinguishedname-768x576.jpg 768w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-search-queries-distinguishedname-1536x1152.jpg 1536w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-search-queries-distinguishedname-16x12.jpg 16w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-attribut-search-queries-distinguishedname.jpg 2048w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/a><\/figure>\n<\/figure>\n\n<h2 class=\"wp-block-heading\">Test connection<\/h2>\n\n<p>To test the configuration you have created with the last 12 steps, click on the button <code>Verbindung testen<\/code>. If the above values are filled in correctly in your form and Sophos Firewall can reach the AD, the following message should appear after a few seconds:<\/p>\n\n<figure class=\"wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-8 is-layout-flex wp-block-gallery-is-layout-flex\">\n<figure class=\"wp-block-image size-large is-resized\"><a href=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-test-successful.jpg\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"163\" data-id=\"15834\" src=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-test-successful-1024x163.jpg\" alt=\"Success message that all information has been filled in correctly and Sophos Firewall was able to reach the AD\" class=\"wp-image-15834\" style=\"width:1008px;height:160px\" srcset=\"https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-test-successful-1024x163.jpg 1024w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-test-successful-64x10.jpg 64w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-test-successful-300x48.jpg 300w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-test-successful-600x96.jpg 600w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-test-successful-768x123.jpg 768w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-test-successful-18x3.jpg 18w, https:\/\/www.avanet.com\/assets\/sophos-sfos-authentication-server-active-directory-test-successful.jpg 1090w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/a><\/figure>\n<\/figure>\n","protected":false},"author":5,"featured_media":0,"parent":0,"template":"","format":"standard","kb_kategorie":[382],"class_list":["post-22100","kb","type-kb","status-publish","format-standard","hentry","kb_kategorie-sophos-firewall"],"blocksy_meta":[],"acf":[],"_links":{"self":[{"href":"https:\/\/www.avanet.com\/en\/wp-json\/wp\/v2\/kb\/22100","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.avanet.com\/en\/wp-json\/wp\/v2\/kb"}],"about":[{"href":"https:\/\/www.avanet.com\/en\/wp-json\/wp\/v2\/types\/kb"}],"author":[{"embeddable":true,"href":"https:\/\/www.avanet.com\/en\/wp-json\/wp\/v2\/users\/5"}],"wp:attachment":[{"href":"https:\/\/www.avanet.com\/en\/wp-json\/wp\/v2\/media?parent=22100"}],"wp:term":[{"taxonomy":"kb_kategorie","embeddable":true,"href":"https:\/\/www.avanet.com\/en\/wp-json\/wp\/v2\/kb_kategorie?post=22100"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}