SSO restricts access to application through VPN tunnel

Orad
Orad Posts: 16
We have SSO working for all users, but we have a IPSEC VPN tunnel between Site A and Site B offices.
And when Web Authorization is enabled users at Site A cannot access application running on Site B.
This is a screen of our AuthPolicy.
Should i change Incoming to LAN and Destination to WAN to make it work?
thank you

Best Answers

  • WJS
    WJS Posts: 39  Freshman Member
    Answer ✓
    Hi

    I think maybe It could use policy order to determine the auth poily hit .


  • Orad
    Orad Posts: 16
    Answer ✓
    WJS said:
    Hi

    I think maybe It could use policy order to determine the auth poily hit .


    thank you, testing it now, seems to be working. the only response i got is, that connection to that application (database based) got slower.

All Replies

  • jasailafan
    jasailafan Posts: 156  Master Member
    Where is the ad server placed? Is it in lan side of site A or site B? Do both site A and site B use the same ad server and the same SSO agent to do authentication?
  • Orad
    Orad Posts: 16
    Where is the ad server placed? Is it in lan side of site A or site B? Do both site A and site B use the same ad server and the same SSO agent to do authentication?
    I We have 2 ADs at both location, ADs are in trust relationship and connected using that VPN tunnel.
    DO you think i should add second AD as authentication server as well?

Security Highlight