SSO restricts access to application through VPN tunnel

Orad

We have SSO working for all users, but we have a IPSEC VPN tunnel between Site A and Site B offices.
And when Web Authorization is enabled users at Site A cannot access application running on Site B.
This is a screen of our AuthPolicy.
Should i change Incoming to LAN and Destination to WAN to make it work?
thank you

WJS

Hi

I think maybe It could use policy order to determine the auth poily hit .

Orad

WJS said:

Hi

I think maybe It could use policy order to determine the auth poily hit .

thank you, testing it now, seems to be working. the only response i got is, that connection to that application (database based) got slower.

jasailafan

Where is the ad server placed? Is it in lan side of site A or site B? Do both site A and site B use the same ad server and the same SSO agent to do authentication?

Orad

jasailafan said:

Where is the ad server placed? Is it in lan side of site A or site B? Do both site A and site B use the same ad server and the same SSO agent to do authentication?

I We have 2 ADs at both location, ADs are in trust relationship and connected using that VPN tunnel.
DO you think i should add second AD as authentication server as well?

WJS

Hi

I think maybe It could use policy order to determine the auth poily hit .

Orad

WJS said:

Hi

I think maybe It could use policy order to determine the auth poily hit .

thank you, testing it now, seems to be working. the only response i got is, that connection to that application (database based) got slower.