-
Products
-
SonicPlatform
SonicPlatform is the cybersecurity platform purpose-built for MSPs, making managing complex security environments among multiple tenants easy and streamlined.
Discover More
-
-
Solutions
-
Federal
Protect Federal Agencies and Networks with scalable, purpose-built cybersecurity solutions
Learn MoreFederalProtect Federal Agencies and Networks with scalable, purpose-built cybersecurity solutions
Learn More - Industries
- Use Cases
-
-
Partners
-
Partner Portal
Access to deal registration, MDF, sales and marketing tools, training and more
Learn MorePartner PortalAccess to deal registration, MDF, sales and marketing tools, training and more
Learn More - SonicWall Partners
- Partner Resources
-
-
Support
-
Support Portal
Find answers to your questions by searching across our knowledge base, community, technical documentation and video tutorials
Learn MoreSupport PortalFind answers to your questions by searching across our knowledge base, community, technical documentation and video tutorials
Learn More - Support
- Resources
- Capture Labs
-
- Company
- Contact Us
How do you authenticate a user with the SSO using who is accessing the network through an IPAD?
03/26/2020 
7 People found this article helpful
485,443 Views
Description
How do you authenticate a user with the SSO using who is accessing the network through an IPAD?
Cause
As an IPAD will not respond either to NetAPI or WMI queries, and does not typically log into a windows domain controller like a windows desktop does, other options need to be used to have an IPAD authenticate the local or LDAP user to the firewall.
Resolution
There are a number of workarounds possible to accomplish this:
NTLM authentication via the web browser is one way to allow the device to login to the Domain. Instructions to configure the firewall side for NTLM Authentication can be found here:
UTM: Single-sign-on (SSO) using NTLM Browser Authentication in SonicOS 5.8. and above
Another is to configure radius authentication for a wireless access point or virtual access point so a user can authenticate to the wireless using their domain credentials. This is discussed here:
Configuring a Virtual Access Point (VAP) Profile
Still another workaround is to have the user on the wireless network VPN to the firewall via a GroupVPN policy or an SSLVPN policy configured on a guest network or some other wireless network that has been modified to allow VPN users to authenticate. Note that GroupVPN policies would only be useful for L2TP connections on the iPad, which would require configuration of the iPad's internal client that we could not support, so it is recommended instead to use SSLVPN for this via the mobile connect app. Instructions on configuration of mobile connect are found here:
How to create a connection in SonicWall Mobile Connect (iOS 4.2 and above)
L2TP instructions can be found here if desired instead
Authenticating iPads and iPhones to Windows via L2TP Server and RADIUS.
Related Articles
- How to Block Google QUIC Protocol on SonicOSX 7.0?
- How to block certain Keywords on SonicOSX 7.0?
- How internal Interfaces can obtain Global IPv6 Addresses using DHCPv6 Prefix Delegation
Categories
- Firewalls > TZ Series
- Firewalls > SonicWall SuperMassive E10000 Series
- Firewalls > SonicWall SuperMassive 9000 Series
- Firewalls > SonicWall NSA Series
YES
NO