Hello,
AD Integrated Web Protection seems to be a tricky topic, it's kicking my butt at the moment. Looking for any help here.
Using UTM version 9.004-33
What I've Done. I believe these tasks are all that is neccesary to enable authentication.
For Web Protection, in Web Protection Profiles I've:
As far as I can tell, only the highest order proxy profile is being used, regardless of group assignment.
What am I missing here?
Thanks,
Tim
AD Integrated Web Protection seems to be a tricky topic, it's kicking my butt at the moment. Looking for any help here.
Using UTM version 9.004-33
What I've Done. I believe these tasks are all that is neccesary to enable authentication.
- I've defined my authentication servers (2), I can enter my test user and have his group membership returned. Modification of group membership (remove from one group, add to another) is properly reflected
- I've enabled SSO, and have successfully joined to the domain (AD object was created)
- I've created group definitions, and limited their membership to backend groups I've selected using the picker control
- I have *not* checked to created users automatically
For Web Protection, in Web Protection Profiles I've:
- Defined a Filter Action which specifies what to block
- Specificied a Filter Assignment assigned to the group created above
- Configured a Proxy Profile using my filter assignment, standard mode for proxy and AD SSO
As far as I can tell, only the highest order proxy profile is being used, regardless of group assignment.
What am I missing here?
Thanks,
Tim