Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1 reply
  • Subscribers 1 subscriber
  • Views 2635 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to apply webfiltering policy for Active Directory groups

sulsulei
Hello everybody,

I configured web filtering in my UTM running the latest version, and all is working as expected.

But whenever I add a group to the policy, the UTM stops matching on the policy and only match on the default allow policy.

The AD server is up and working, and if you test a username and password it will return the correct results, but I noticed it gives a message saying that " could not find a group for this user".

The way I associated a group with web filtering policy is to click in the policy then click on creating new group, from there I choose backend and Active Directory and I save it.

Do I need to add the UTM to the domain?

Any help would be much appreciated

Regards
Suleiman


This thread was automatically locked due to age.
Parents
  • 0
    You only need to join your UTM to the domain if using SSO, but doesn't hurt to do so otherwise and can make life easier for certain configurations, so you may want to do that.  You do need to add your DCs and test the connections to them at Definitions & Users > Authentication Services > Servers.

    In the Backend AD groups you created on the UTM, try ticking the box for Limit to backend group(s) membership and then browsing to your AD group to set the LDAP path.
    __________________
    ACE v8/SCA v9.3

    ...still have a v5 install disk in a box somewhere.

    http://xkcd.com
    http://www.tedgoff.com/mb
    http://www.projectcartoon.com/cartoon/1
Reply
  • 0
    You only need to join your UTM to the domain if using SSO, but doesn't hurt to do so otherwise and can make life easier for certain configurations, so you may want to do that.  You do need to add your DCs and test the connections to them at Definitions & Users > Authentication Services > Servers.

    In the Backend AD groups you created on the UTM, try ticking the box for Limit to backend group(s) membership and then browsing to your AD group to set the LDAP path.
    __________________
    ACE v8/SCA v9.3

    ...still have a v5 install disk in a box somewhere.

    http://xkcd.com
    http://www.tedgoff.com/mb
    http://www.projectcartoon.com/cartoon/1
Children
No Data
Unfiltered HTML