Hi
I have a simple wish - to be able to have a username written in the 'user'
column in the log when a user accesses the internet.
I don't want the user to have to keep authorizing at every session - I would
like them to be authorized when they login to the OS.
I don't want them to have to connect to the Firewall (port 900) and login. I am
trying to have them prompted to login once until the timeout comes up.
Later on I would like to link to an LDAP server and automatically authorize the
user but for now I am keeping it simple and just using the FW-1 user database.
I have tried just about every permutation of 'user', 'client' and 'session'
authorization but to no avail.
Sometime I can get the username with the 'authorization' but then I get
'unknown' for subsequent connections.
Sometimes I can get the username but then I can't get it using the 'account'
option in 'track'
I have read all the phoneboy stuff and anything else I could get my hands on.
Has anybody managed to get this to work?
Paul
-
-------------------------------------------------------------------------------------------
C. Paul Simons
Corporate Network Services
IHS Energy Group, Englewood, CO.
Main: +1 303 736 3000
Direct: +1 303 736 3451
Fax: +1 303 736 3860
Mobile: +1 303 748 5242
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
