Is there anyone here on the boards that is running eDir SSO? I'm curious if you are seeing random proxy authentication prompts that popup for [seemingly] no reason.
Well, we did discover that some of our users with laptops were connected both wired and wireless at the same time, and that caused eDir to record say the wireless IP, and UTM to see requests coming from the wired IP, so we forced them to choose only one connection method, and that fixed this particular issue.
In the end, though, we changed the Default Filtering Profile to block the lowest common denominator of categories (which turns out to be the ones we use to filter elementary students) and to not block on authentication failures. This alleviates the auth popup dialog problem completely, but in a shared environment, we may not be getting usernames at times in the logs due to a [now-invisible] authentication failure that doesn't get fixed until AUA kicks in like it should, or they clear current connections and login again with the Novell client.
It's important to clear existing connections before trying to login again with the Novell client because it's the only way eDir will update the network address field. There is a setting in the client to display a checkbox that will do that right on the login dialog, but in older versions of the client, it wasn't there and we had to manually disconnect from the tree before attempting another login. Or you could just log out of Windows and login again, but that is even more frustrating.
Well, we did discover that some of our users with laptops were connected both wired and wireless at the same time, and that caused eDir to record say the wireless IP, and UTM to see requests coming from the wired IP, so we forced them to choose only one connection method, and that fixed this particular issue.
In the end, though, we changed the Default Filtering Profile to block the lowest common denominator of categories (which turns out to be the ones we use to filter elementary students) and to not block on authentication failures. This alleviates the auth popup dialog problem completely, but in a shared environment, we may not be getting usernames at times in the logs due to a [now-invisible] authentication failure that doesn't get fixed until AUA kicks in like it should, or they clear current connections and login again with the Novell client.
It's important to clear existing connections before trying to login again with the Novell client because it's the only way eDir will update the network address field. There is a setting in the client to display a checkbox that will do that right on the login dialog, but in older versions of the client, it wasn't there and we had to manually disconnect from the tree before attempting another login. Or you could just log out of Windows and login again, but that is even more frustrating.
