[Solved] Adding Sophos UTM failing discovery

Unimus support forum
Post Reply
jjozwik
Posts: 11
Joined: Thu Oct 13, 2016 4:58 pm

Thu Dec 14, 2017 9:37 pm

I saw that Sophos UTM was supported on one of the releases.
I attempted to add my firewall to it but it has failed discovery.
Is there any special configurations for that?
Is there also a method to say only attempt this login method for this device. Our firewall doesn't tend to like multiple login attempts.
-- nevermind on that, I see there is already issues in jira
Thank you for your hard work.
User avatar
Tomas
Posts: 1206
Joined: Sat Jun 25, 2016 12:33 pm

Thu Dec 14, 2017 10:54 pm

What version of Sophos are you running?

Could you please post the prompt, and the output of 'version' command?

Something like this:

Code: Select all

<M> fw:/root # 
<M> fw:/root # version

Current software version...: 9.502004
Hardware type..............: 330r1
Serial number..............: xxxxx
Installation image.........: x.xx-x.x
Installation type..........: ssi
Installed pattern version..: 131464
Downloaded pattern version.: 131464
Up2Dates applied...........: 1 (see below)
                             sys-x.xx-x.xx-4.9.1.tgz (Jan  4  2017)
Up2Dates available.........: 0
Factory resets.............: 0
Timewarps detected.........: 0

<M> fw:/root # 
jjozwik
Posts: 11
Joined: Thu Oct 13, 2016 4:58 pm

Thu Dec 21, 2017 3:15 pm

Hello,
Sorry for late reply.
Current software version...: 9.506002
Hardware type..............: 210r2

Do I need to have direct root login enabled? or will the loginuser work?
User avatar
Tomas
Posts: 1206
Joined: Sat Jun 25, 2016 12:33 pm

Thu Dec 21, 2017 4:13 pm

You don't need direct root, just normal login user will work as well.

Could you please post the output as I showed in the previous post?
(including prompt and full output of 'version')

Thanks!
jjozwik
Posts: 11
Joined: Thu Oct 13, 2016 4:58 pm

Fri Dec 22, 2017 7:22 pm

Code: Select all

<M> loginuser@63:/home/login > version

Current software version...: 9.506002
Hardware type..............: 210r2
Serial number..............: XXXXXXXXXX
Installation image.........: 9.311-3.1
Installation type..........: msi
Installed pattern version..: 137021
Downloaded pattern version.: 137021
Up2Dates applied...........: 33 (see below)
                             sys-9.311-9.312-3.8.1.tgz (Nov 10  2016)
                             sys-9.312-9.313-8.3.1.tgz (Nov 10  2016)
                             sys-9.313-9.314-3.13.1.tgz (Nov 10  2016)
                             sys-9.314-9.315-13.2.1.tgz (Nov 10  2016)
                             sys-9.315-9.316-2.4.1.tgz (Nov 10  2016)
                             sys-9.316-9.317-4.5.1.tgz (Nov 10  2016)
                             sys-9.317-9.318-5.5.2.tgz (Nov 10  2016)
                             sys-9.318-9.319-5.5.1.tgz (Nov 10  2016)
                             sys-9.319-9.320-5.2.2.tgz (Nov 10  2016)
                             sys-9.320-9.350-2.12.1.tgz (Nov 10  2016)
                             sys-9.350-9.351-12.3.2.tgz (Nov 10  2016)
                             sys-9.351-9.352-3.6.2.tgz (Nov 10  2016)
                             sys-9.352-9.353-6.4.1.tgz (Nov 10  2016)
                             sys-9.353-9.354-4.4.1.tgz (Nov 10  2016)
                             sys-9.354-9.355-4.1.1.tgz (Nov 10  2016)
                             sys-9.355-9.356-1.3.1.tgz (Nov 10  2016)
                             sys-9.356-9.357-3.1.4.tgz (Nov 10  2016)
                             sys-9.357-9.404-1.5.3.tgz (Nov 10  2016)
                             sys-9.404-9.405-5.5.1.tgz (Nov 10  2016)
                             sys-9.405-9.406-5.3.1.tgz (Nov 10  2016)
                             sys-9.406-9.407-3.3.1.tgz (Nov 10  2016)
                             sys-9.407-9.408-3.4.1.tgz (Nov 10  2016)
                             sys-9.408-9.409-4.9.1.tgz (Dec 29  2016)
                             sys-9.409-9.411-9.3.2.tgz (Feb 13  2017)
                             sys-9.411-9.412-3.2.2.tgz (Apr 24  2017)
                             sys-9.412-9.413-2.4.3.tgz (May  4  2017)
                             sys-9.413-9.414-4.2.3.tgz (Jun 14  2017)
                             sys-9.414-9.501-2.5.1.tgz (Jun 14  2017)
                             sys-9.501-9.502-5.4.1.tgz (Jul 30 19:36)
                             sys-9.502-9.503-4.4.2.tgz (Oct 21 02:01)
                             sys-9.503-9.504-3.1.4.tgz (Oct 23 00:04)
                             sys-9.504-9.505-1.4.1.tgz (Oct 27 03:00)
                             sys-9.505-9.506-4.2.2.tgz (Dec  9 00:39)
Up2Dates available.........: 0
Factory resets.............: 0
Timewarps detected.........: 0

<M> loginuser@63:/home/login >
jjozwik
Posts: 11
Joined: Thu Oct 13, 2016 4:58 pm

Fri Dec 22, 2017 8:20 pm

Sorry for the trouble, I got it working.
I just had to white list Unimus server under firewall for blocking failed login attempts

Definitions & Users > Authentication Services > Advanced > Never Block Networks ..
User avatar
Tomas
Posts: 1206
Joined: Sat Jun 25, 2016 12:33 pm

Sat Dec 23, 2017 3:54 pm

Thanks for the update!

Glad to hear it works.
Post Reply