Windows Firewall and SSO agent working together

Description

We always recommend to have Windows Defender and Windows firewall to be disabled to facilitate SSO authentification, and usually if they are enabled we get an error of "Network path not found" on SSO agent.


This article is about which port needs to be allowed on Windows Firewall so the SSO agent may be able to authenticate the user.

Resolution

For WMI, we need to open the TCP port 445, and for NETAPI we need to use TCP port 135, below are the steps to open them:


  1. From the Start menu, click Control Panel, click System and Security, and then click Windows Firewall. Control Panel is not configured for 'Category' view, you only need to select Windows Firewall.

  2. Click Advanced Settings
    .Image

  3. Click Inbound Rules
    .Image

  4. Click New Rule in the Actions window.

  5. Click Rule Type of Port.
    Image

  6. Click Next.

  7. On the Protocol and Ports page click TCP.

  8. Select Specific Local Ports and type a value of 445 for WMI or 135 for NETAPI.Image

  9. Click Next.

  10. On the Action page click Allow the connection.Image

  11. Click Next.

  12. On the Profile page click the appropriate options for your environment.
    Image

  13. Click Next.

  14. On the Name page enter a name of preference.
    Image

  15. Click Finish.

  16. Restart the computer.

Related Articles

  • How to block ICMP (Ping ) using Application control
    Read More
  • SonicWall GEN8 TZ and NSa Firewalls FAQ
    Read More
  • How to configure Link Aggregation
    Read More

Categories

Firewalls
TZ Series
User Login
not finding your answers?
Ask the Community