Jump to content


Photo

automated MSAD User authentication - DC Agent

DC Agent

  • Please log in to reply
1 reply to this topic

#1 Manuel Huber

Manuel Huber
  • Members
  • 155 posts

Posted 23 November 2016 - 03:37 AM

Hi,

 

we use DC agent and at first glance it works quite well.

 

But we have quite a lot of laptop users who use both a docking station and wifi (always on).

 

When logging on, the currently used IP address, either cable or wifi, is logged at the DC and DC agent forwards only this IP address to the firewall.

Now when docking out (or in), the IP address of the client changes, it is not known to the firewall, thus the user is blocked.

 

Basically we would need a tool/script/service which triggers an entry at the DC security logfile, at best automatically.

 

I wonder if anyone else has already experienced this problem and probably found a solution?

 

Thanks!



#2 Thomas Heymans

Thomas Heymans
  • Members
  • 11 posts

Posted 23 November 2016 - 09:31 AM

+1 for this question.

SSO software from other firewall vendors combine security event logs with Netbios/WMI to query unknown pcs which resolves this issue. However with Barracuda this is not possible and this is definitely a disadvantage.