Options

Mac OS SSO

rv@kaufmann.dkrv@kaufmann.dk
in Firebox - Authentication

Hi,

MAC 11.15.1 with SSO client 12.5.4

In the SSO client log i see these errors for groups which should be filtered out.
2021-08-03 11:34:27.594 ssoclient[2764:103] group name [everyone] should be filtered but not, ooooh NO.
2021-08-03 11:34:27.594 ssoclient[2764:103] Group[2] ID is 62
2021-08-03 11:34:27.594 ssoclient[2764:103] group name [netaccounts] should be filtered but not, ooooh NO.
2021-08-03 11:34:27.594 ssoclient[2764:103] Group[3] ID is 79
2021-08-03 11:34:27.594 ssoclient[2764:103] group name [_appserverusr] should be filtered but not, ooooh NO.
2021-08-03 11:34:27.594 ssoclient[2764:103] Group[4] ID is 80
2021-08-03 11:34:27.594 ssoclient[2764:103] group name [admin] should be filtered but not, ooooh NO.
2021-08-03 11:34:27.594 ssoclient[2764:103] Group[5] ID is 81
2021-08-03 11:34:27.594 ssoclient[2764:103] group name [_appserveradm] should be filtered but not, ooooh NO.
2021-08-03 11:34:27.594 ssoclient[2764:103] Group[6] ID is 701
2021-08-03 11:34:27.595 ssoclient[2764:103] group name [com.apple.sharepoint.group.1] should be filtered but not, ooooh NO.
2021-08-03 11:34:27.595 ssoclient[2764:103] Group[7] ID is 702
2021-08-03 11:34:27.595 ssoclient[2764:103] group name [com.apple.sharepoint.group.2] should be filtered but not, ooooh NO.
2021-08-03 11:34:27.595 ssoclient[2764:103] Group[8] ID is 703
2021-08-03 11:34:27.595 ssoclient[2764:103] group name [com.apple.sharepoint.group.3] should be filtered but not, ooooh NO.
2021-08-03 11:34:27.595 ssoclient[2764:103] Group[9] ID is 33
2021-08-03 11:34:27.595 ssoclient[2764:103] group name [_appstore] should be filtered but not, ooooh NO.
2021-08-03 11:34:27.595 ssoclient[2764:103] Group[10] ID is 98
2021-08-03 11:34:27.595 ssoclient[2764:103] group name [_lpadmin] should be filtered but not, ooooh NO.
2021-08-03 11:34:27.595 ssoclient[2764:103] Group[11] ID is 100
2021-08-03 11:34:27.595 ssoclient[2764:103] group name [_lpoperator] should be filtered but not, ooooh NO.
2021-08-03 11:34:27.595 ssoclient[2764:103] Group[12] ID is 204
2021-08-03 11:34:27.595 ssoclient[2764:103] group name [_developer] should be filtered but not, ooooh NO.
2021-08-03 11:34:27.596 ssoclient[2764:103] Group[13] ID is 250
2021-08-03 11:34:27.596 ssoclient[2764:103] group name [_analyticsusers] should be filtered but not, ooooh NO.
2021-08-03 11:34:27.596 ssoclient[2764:103] Group[14] ID is 395
2021-08-03 11:34:27.596 ssoclient[2764:103] group name [com.apple.access_ftp] should be filtered but not, ooooh NO.
2021-08-03 11:34:27.596 ssoclient[2764:103] Group[15] ID is 398
2021-08-03 11:34:27.596 ssoclient[2764:103] group name [com.apple.access_screensharing] should be filtered but not, ooooh NO.

Regards
Robert

Comments

  • Options
    james.carsonjames.carson Moderator, WatchGuard Representative

    Hi Robert,

    The system may show them in client logs, but should be filtering them by the time they get to the firewall. Doubly so if logging levels were ever turned up.

    Are these groups appearing on the firewall?
    (Fastest way to check is to generate a support file and look in Fireware_XTM_Support.tgz\Fireware_XTM_Support.tar\support\system\auth_session_list.txt -- this will list each group the users is/are in.)

    -James Carson
    WatchGuard Customer Support

Sign In to comment.