Adconf
From Wiki of WFilter NG Firewall
(Difference between revisions)
(→同步域账号) |
|||
| Line 1: | Line 1: | ||
{{DISPLAYTITLE:AD Intergration}} | {{DISPLAYTITLE:AD Intergration}} | ||
| − | == | + | == AD Intergration == |
| − | + | "AD Intergration" enables you to intergrate WFilter ROS with microsoft active directory, so you can: | |
| − | + | * Detect AD username of online devices. | |
| − | + | * Set internet access and bandwidth shaper policies based on AD users. | |
| − | + | * Record AD users internet activity. | |
| − | + | For example: | |
| − | + | * The real-time bandwidth: | |
| − | [[File:Faq_en_adconf003.png]] | + | [[File:ros_adconf_001.png|650px]] |
| + | * Choose applied-to users: | ||
| + | [[File:Faq_en_adconf003.png|600px]] | ||
| − | == | + | == Settings == |
| − | + | ||
| − | + | ||
| − | + | ||
| − | ==FAQ== | + | To enable "AD Intergration", the following conditions must be met: |
| + | * A valid enterprise license of WFilter ROS. | ||
| + | * A valid active directory. | ||
| + | * Admin access to the active directory(The admin user shall belong to the "Domain Admins" group.) | ||
| + | [[File:Faq_en_adconf001.png|800px]] | ||
| + | |||
| + | [[File:Faq_en_adconf002.png|600px]] | ||
| + | |||
| + | * Notice: | ||
| + | ** WFilter ROS uses different machanism to retrieve logon domain users when the DC is in external or internal network. | ||
| + | ** When "automatically sync domain users" is enabled, new or deleted domain users will be synced to WFilter. | ||
| + | ** WFilter detects a domain user when it login into the active directory. So you might need to wait sometime to see logon users. | ||
| + | ** The default user entry timeout is 30 hours. If no re-logon happens in 30 hours after last time logon, this username will be timeout. | ||
| + | ** Some programs in the client device will automaticaly logon into the domain with a different AD user. In this case, you can add this user into the "Exception List". | ||
| + | |||
| + | |||
| + | == FAQ == | ||
Revision as of 14:41, 24 December 2015
1 AD Intergration
"AD Intergration" enables you to intergrate WFilter ROS with microsoft active directory, so you can:
- Detect AD username of online devices.
- Set internet access and bandwidth shaper policies based on AD users.
- Record AD users internet activity.
For example:
- The real-time bandwidth:
- Choose applied-to users:
2 Settings
To enable "AD Intergration", the following conditions must be met:
- A valid enterprise license of WFilter ROS.
- A valid active directory.
- Admin access to the active directory(The admin user shall belong to the "Domain Admins" group.)
- Notice:
- WFilter ROS uses different machanism to retrieve logon domain users when the DC is in external or internal network.
- When "automatically sync domain users" is enabled, new or deleted domain users will be synced to WFilter.
- WFilter detects a domain user when it login into the active directory. So you might need to wait sometime to see logon users.
- The default user entry timeout is 30 hours. If no re-logon happens in 30 hours after last time logon, this username will be timeout.
- Some programs in the client device will automaticaly logon into the domain with a different AD user. In this case, you can add this user into the "Exception List".
