I installed the WGIC (5.2.3) on an XP Pro client with fast user switching enabled. No matter who (of the three users) logs in and acceses the internet from the client, the username that appears in Gatekeeper on the server is always the same, even if that person has logged off the client. Each of these users also has login rights (but not necessarily at the same level) on the server machine, too.
The server (also running XP Pro) is set up for WinNT/200/XP Pro user database" and "either Wingate or WinNT user accounts" for authentication.
I want to monitor activity by user instead of just by computer (trying to track down some virus-like activities), as well as use authentication to further secure a newly added Wireless access point (that's on a second subnet). Everything is working just fine, except for the username question.
Am I missing something here?
WGIC and XP User authentication
Moderator: Qbik Staff
3 posts
• Page 1 of 1
WGIC and XP User authentication
by drjohn999 » Apr 07 04 7:31 pm
- drjohn999
- Posts: 33
- Joined: Feb 09 04 11:38 am
by erwin » Apr 08 04 8:54 am
Hi there
How are your users being made to authenticate?
What sort of authentication policies have you set up in GateKeeper?.
I understand that you have selected NT userdatabase option but what type of restriction policies you have in place for each service/system policies?
Have you made sure that everyone must be authenticated. Again this can be done by a system wide policy or service by service.
Regards
Erwin
How are your users being made to authenticate?
What sort of authentication policies have you set up in GateKeeper?.
I understand that you have selected NT userdatabase option but what type of restriction policies you have in place for each service/system policies?
Have you made sure that everyone must be authenticated. Again this can be done by a system wide policy or service by service.
Regards
Erwin
- erwin
- Qbik Staff
- Posts: 408
- Joined: Sep 03 03 2:54 pm
by drjohn999 » Apr 08 04 9:37 am
After restarting the client, I now noticed that the username and WGusername that appear in the Wingate history are whoever logged into the system (and started WGIC) first. When another user logs in, the WGIC continues to send over the first user's name to the server.
The users are authenticated on the client under Win XP Pro with their XP usernames and passwords. Fast user switching is enabled. WGIC finds the Wingate server instantly, and appears to be functioning correctly.
On the server, the XP authentication is the same as on the client, except for one user who has user (not admin) level access. This one user hasn'nt logged in yet after I installed WGIC on the client.
On Wingate, I initially allowed any user to authenticate (in System Policies). Changing this to either allow only authenticated users or also assumed users made no difference (other than locking out 'guest' users).
There are no service-specific policies in place. ENS is enabled and there appear to be no routing issues. Transparent redirection is at default (0ff) settings for all services. There are a number of websites in the "ban" list, but Wingate appears to block these quite specifically. The above questions occur with any type of connection.
Thanks,
John
The users are authenticated on the client under Win XP Pro with their XP usernames and passwords. Fast user switching is enabled. WGIC finds the Wingate server instantly, and appears to be functioning correctly.
On the server, the XP authentication is the same as on the client, except for one user who has user (not admin) level access. This one user hasn'nt logged in yet after I installed WGIC on the client.
On Wingate, I initially allowed any user to authenticate (in System Policies). Changing this to either allow only authenticated users or also assumed users made no difference (other than locking out 'guest' users).
There are no service-specific policies in place. ENS is enabled and there appear to be no routing issues. Transparent redirection is at default (0ff) settings for all services. There are a number of websites in the "ban" list, but Wingate appears to block these quite specifically. The above questions occur with any type of connection.
Thanks,
John
- drjohn999
- Posts: 33
- Joined: Feb 09 04 11:38 am
3 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 5 guests