Welcome, Guest. Please login or register.
Did you miss your activation email?
Friday 15 November 2024, 07:15:32 am

Login with username, password and session length

CLICK HERE for the The official Endian Roadmap and Issue tracker
14255 Posts in 4377 Topics by 6515 Members
Latest Member: hulteends
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  EFW SMTP, HTTP, SIP, FTP Proxy Support
| | |-+  Looking for Authentication behavior to allow bypassing
0 Members and 0 Guests are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: Looking for Authentication behavior to allow bypassing  (Read 14491 times)
jimheem
Jr. Member
*
Offline Offline

Posts: 1


« on: Thursday 25 June 2009, 05:12:32 am »

I can't seem to figure out how to accomplish this. What I want is for my users to be able to surf the web without authentication, and have restrictions such as content filtering, but if sysadmin needs to bypass that temporarily, I can enter username and password to allow temporary bypass of filter rules.

Can I do this with Version 2.2?

Thanks
Logged
davvidde
Full Member
***
Offline Offline

Gender: Male
Posts: 68


« Reply #1 on: Thursday 25 June 2009, 07:18:22 pm »

I think you can use a dedicated PC which has a well known  IP address and from that address you need to authenticate by any credentials.
You can set a the proxy to Authentication required and set below the IP addresses that do not require authentication (the PCs used by your users) and the PC not listed here is used by admin. Also you need to set a group policy to grant the admin group unrestricted access and others groups default policy.
The PC used by administrator is always forced to authenticate and so the admin can bypas s the filtering giving his credentials.
I try this by setting an LDAP authentication to an AD server but this works, for me, only in EFW-2.2rc3. The final release 2.2 has a "bug" which I do not know to investigate (see http://efwsupport.com/index.php?topic=673.0) and the default policy does not work, only unrestricted policy works, so, I think, from that PC you could connect only with admin credentials and not with any other users belonging to another group which has a default policy.
Logged
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.047 seconds with 19 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com