UTM: force or check authentication via Browser

Hallo,

I'm not sure I understand what you're seeing.  Are you working in Transparent or Standard mode?  Is it the user named "Administrator" or do only users that have Administrator privileges sometimes fail to authenticate?  When you crawl through the firewall logs, what are you looking for and what do you find?

Cheers - Bob
PS Should I move this thread to the Web Filtering forum?

Hi BAlfson

Thank you for your time.

We are working in Transparent mode.

I think, it's not an authentication failure.
In my opinion, this behaviour is expected, but not very handy.

Following situation:
An admin user (user with admin privileges on the Client and on the Firewall) logs in to a Client Computer. At this moment, the Firewall Webfilter is not aware of the respective user. Now this user try to download a Software through third-party application (e.g. Lenovo Firmware updater). This download fails, because the  user is not authenticated against the Firewall (Webfilter log shows user=""). Now he has to open a Browser and open a Webpage that is categorised as only available for authenticated user. At this moment the user will be silently authenticated through NTLM.
Now he can go back to third-party application and download the software.

The problems:
1. the user is not knowing, which websites force an authentication.
2. he is not able to check if authentication worked or not, without crawling the logs.

PS: Yes, I think the Web Filtering forum would be the better place.

Please show a picture of the Edit of the Web Filtering Profile.

Cheers - Bob

That's the 'Policies' tab, we need to look at the 'Web Filter Profile' tab.

Cheers - Bob

Voilä

It looks like das Problem ist that the user is not initially authenticated with AD, but only as a local user of the PC.

In any case, I always prefer to use Standard mode with AD with a proxy auto configuration file.

Cheers - Bob