WatchGuard Support Center

Knowledge Base - Article

000013811
 Enable Active Directory Single Sign-On (Fireware v12.1.1 or lower)

Information
How do I enable and configure Active Directory SSO in Fireware v12.1.1 or lower?
In Fireware v12.2, the steps to enable and configure Active Directory SSO changed. If your Firebox has Fireware v12.1.1 or lower, follow the steps in this article to enable and configure SSO.

To enable and configure SSO, from Fireware Web UI:
  1. Select Authentication > Single Sign-On
  2. Select the Enable Single Sign-On (SSO) with Active Directory check box.
    User-added image
  3. In the SSO Agent IP address text box, type the IP address of your SSO Agent.
  4. If you use AD Mode for SSO, in the Cache data for text box, specify the amount of time the SSO Agent caches data from an Active Directory server.
    For more information about AD Mode, see About SSO in Fireware Help.
  5. In the SSO Exceptions list, add or remove the IP addresses or ranges to exclude from SSO queries. 
  6. To enable users who connect to your network through a BOVPN tunnel to use SSO, select the Enable Single Sign-On (SSO) through BOVPN tunnels check box.
  7. Click Save.
To enable and configure SSO, from Policy Manager:
  1. Select Setup > Authentication > Authentication Settings
  2. Select the Single Sign-On tab.
  3. Select the Enable Single Sign-On (SSO) with Active Directory check box.
    User-added image
  4. In the SSO Agent IP address text box, type the IP address of your SSO Agent.
  5. If you use AD Mode for SSO, in the Cache data for text box, specify the amount of time the SSO Agent caches data from an Active Directory server.
    For more information about AD Mode, see About SSO in Fireware Help.
  6. In the SSO Exceptions list, add or remove the IP addresses or ranges to exclude from SSO queries. 
  7. To enable users who connect to your network through a BOVPN tunnel to use SSO, select the Enable Single Sign-On (SSO) through BOVPN tunnels check box.
  8. Click OK.