Antony the process is this!
User goes to the captive portal.
He enters with username and password, mysql stores it.
In proxy external_acl get the ip that the user is logged through policy
%SRC and checks which user in mysql with that ip.
The problem is that several users enter the terminal server windows and
each user enter with your proxy username in captive portal. When my acl
search in mysql by %SRC he will get multiple users.
Thanks!
Oliveiros Peixoto.
Em 27/06/2013 15:46, Antony Stone escreveu:
On Thursday 27 Jun 2013 at 20:28:18, Oliveiros Peixoto (Netinho) wrote:
Ricardo,
Some environments do not have active directory.
Antony,
Do you still not understand?
No, I'm sorry, I don't - I thought you said "Each person has a user terminal
server and a user for the proxy. Each user belongs to a group and each group
has its rules."
Therefore each person is unique by their username on the proxy, and the IP
address should not matter.
To quote Amos Jeffries again: The users will always be logged in with their
username and uniquely identifiable from that. Where is the problem?
I need use Captive Portal to authenticate my clients. With the use
external_acl I getting through your ip your username that already used in
form auth. With this I apply my acls blocking sites. What happens is that in
a terminal server session I use one different user.
So are you now saying that each person does not have their own username on the
proxy, but instead they all share one single username?
If that is the case then I cannot see how you can tell them apart, if they all
share a common username (and also a common IP address, from the terminal
server).
Regards,
Antony.
