SSO restricts access to application through VPN tunnel

Orad · November 2021

We have SSO working for all users, but we have a IPSEC VPN tunnel between Site A and Site B offices.
And when Web Authorization is enabled users at Site A cannot access application running on Site B.
This is a screen of our AuthPolicy.
Should i change Incoming to LAN and Destination to WAN to make it work?
thank you

Image: https://us.v-cdn.net/6029482/uploads/editor/fn/tw5aqsyrdim2.jpg

WJS · November 2021

Hi

I think maybe It could use policy order to determine the auth poily hit .

Image: https://us.v-cdn.net/6029482/uploads/editor/rz/nc77nu2kfllz.png

Orad · November 2021

WJS said:

Hi

I think maybe It could use policy order to determine the auth poily hit .

thank you, testing it now, seems to be working. the only response i got is, that connection to that application (database based) got slower.

jasailafan · November 2021

Where is the ad server placed? Is it in lan side of site A or site B? Do both site A and site B use the same ad server and the same SSO agent to do authentication?

Orad · November 2021

jasailafan said:

Where is the ad server placed? Is it in lan side of site A or site B? Do both site A and site B use the same ad server and the same SSO agent to do authentication?

I We have 2 ADs at both location, ADs are in trust relationship and connected using that VPN tunnel.
DO you think i should add second AD as authentication server as well?

WJS · November 2021

Hi

I think maybe It could use policy order to determine the auth poily hit .

Orad · November 2021

WJS said:

Hi

I think maybe It could use policy order to determine the auth poily hit .

thank you, testing it now, seems to be working. the only response i got is, that connection to that application (database based) got slower.

SSO restricts access to application through VPN tunnel

Best Answers

All Replies

Categories

Security Help Center