8e6 Technologies Enterprise Filter Authentication R3000 User Manual

Size:
6.79 Mb
Download

CHAPTER 2: NETWORK SETUP SET UP THENETWORK FORAUTHENTICATION

“Wbwatch Log (wbwatch.log)” - used for viewing messages on attempts to join the domain via the Authentication Settings window.

“Authentication Log (AuthenticationServer.log)” - used for viewing information about the authentication process for users, including SEVERE and WARNING error messages.

“Admin GUI Server Log (AdminGUIServer.log)” - used for viewing information on entries made by the administrator in the console.

“eDirectory Agent Debug Log (edirAgent.log)” - used for viewing the debug log, if using eDirectory LDAP authentication.

“eDirectory Agent Event Log (edirEvent.log)” - used for viewing the event log, if using eDirectory LDAP authentication.

“Authentication Module Log (authmodule.log)” - used for viewing information about SEVERE error messages pertaining to LDAP authentication connection attempts.

3.Choose the Last Number of Lines to view(100-500)from that file.

8E6 TECHNOLOGIES, R3000 ENTERPRISEFILTERAUTHENTICATIONUSERGUIDE

79

CHAPTER 2: NETWORK SETUP SET UP THENETWORK FORAUTHENTICATION

4.Click View to display results in the Resultpop-upwindow:

Fig. 2-14View Log File Resultpop-upwindow

5.Click the “X” in the upper right corner of the pop-upwindow to close it.

80

8E6 TECHNOLOGIES, R3000 ENTERPRISEFILTERAUTHENTICATIONUSERGUIDE

CHAPTER 2: NETWORK SETUP SET UP THENETWORK FORAUTHENTICATION

Specify block page settings

Click Control and select Block Page Authentication from thepop-upmenu to display the Block Page Authentication window:

Fig. 2-15Block Page Authentication window

8E6 TECHNOLOGIES, R3000 ENTERPRISEFILTERAUTHENTICATIONUSERGUIDE

81

CHAPTER 2: NETWORK SETUP SET UP THENETWORK FORAUTHENTICATION

Block Page Authentication

1.In the Re-authentication Options field of the Details frame, all block page options are selected by default, except forWeb-basedAuthentication. Choose from the following options by clicking your selection:

Web-basedAuthentication- select this option if using Web authentication with time-based profiles or persistent login connections for NT or LDAP authentication methods.

Re-authentication - select this option for the reauthentication option. The user can restore his/her profile and NET USE connection by clicking an icon in a window to run a NET USE script.

Override Account - select this option if any user has an Override Account, allowing him/her to access URLs set up to be blocked at the global or IP group level.

TIP: Multiple options can be selected by clicking each option while pressing the Ctrl key on your keyboard.

NOTE: See the R3000 User Guide for information about the

Override Account feature.

2.If the “Re-authentication”option was selected, in the

Logon Script Path field, \\PDCSHARE\scriptsdisplays by default. In this field, enter the path of the logon script that the R3000 will use when re-authenticating users on the network, in the event that a user's machine loses its connection with the server, or if the server is rebooted.

This format requires the entry of two backslashes, the authentication server’s computer name (or computer IP address) in capital letters, a backslash, and name of the share path.

3.Click Apply to apply your settings.

82

8E6 TECHNOLOGIES, R3000 ENTERPRISEFILTERAUTHENTICATIONUSERGUIDE

CHAPTER 2: NETWORK SETUP SET UP THENETWORK FORAUTHENTICATION

Block page

When a user attempts to access Internet content set up to be blocked, the block page displays on the user’s screen:

Fig. 2-16Block page

NOTES: See Block Page Customization for information on adding free form text and a hyperlink at the top of the block page. Appendix D: Create a Custom Block Page from the R3000 User Guide for information on creating a customized block page using your own design.

8E6 TECHNOLOGIES, R3000 ENTERPRISEFILTERAUTHENTICATIONUSERGUIDE

83

CHAPTER 2: NETWORK SETUP SET UP THENETWORK FORAUTHENTICATION

User/Machine frame

By default, the following data displays in the User/Machine frame:

User/Machine field - The username displays for the NT/ LDAP user. This field is blank for the IP group user.

IP field - The user’s IP address displays.

Category field - The name of the library category that blocked the user’s access to the URL displays. If the content the user attempted to access is blocked by an Exception URL, “Exception” displays instead of the library category name.

Blocked URL field - The URL the user attempted to access displays.

Standard Links

By default, the following standard links are included in the block page:

HELP - Clicking this link takes the user to 8e6’s Technical Support page that explains why access to the site or service may have been denied.

8e6 Technologies - Clicking this link takes the user to 8e6’s Web site.

84

8E6 TECHNOLOGIES, R3000 ENTERPRISEFILTERAUTHENTICATIONUSERGUIDE

CHAPTER 2: NETWORK SETUP SET UP THENETWORK FORAUTHENTICATION

Optional Links

By default, these links are included in the block page under the following conditions:

For further options, click here.- This phrase and link is included if any option was selected at the Re-authentica- tion Options field in the Block Page Authentication window. Clicking this link takes the user to the Options window, described in the Options page sub-section that follows.

To submit this blocked site for review, click here.- This phrase and link is included if an email address was entered in the Submission Email Address field in the Common Customization window. Clicking this link launches the user’s default email client. In the composition window, the email address from the Submission Email Address field populates the “To” field. The user’s message is submitted to the global administrator.

8E6 TECHNOLOGIES, R3000 ENTERPRISEFILTERAUTHENTICATIONUSERGUIDE

85

CHAPTER 2: NETWORK SETUP SET UP THENETWORK FORAUTHENTICATION

Options page

The Options page displays when the user clicks the following link in the block page: For further options, click here.

Fig. 2-17Options page

The following items previously described for the Block page display in the upper half of the Options page:

BACK and HELPlinks

User/Machine frame contents

The frame beneath the User/Machine frame includes information for options (1, 2, and/or 3) based on settings made in the Block Page Authentication window.

86

8E6 TECHNOLOGIES, R3000 ENTERPRISEFILTERAUTHENTICATIONUSERGUIDE

CHAPTER 2: NETWORK SETUP SET UP THENETWORK FORAUTHENTICATION

Option 1

Option 1 is included in the Options page if “Web-basedAuthentication” was selected at theRe-authenticationOptions field in the Block Page Authentication window. The following phrase/link displays:

Click here for secureWeb-basedauthentication.

When the user clicks the link, the Authentication Request Form opens:

Fig. 2-18Authentication Request Form

NOTE: See Authentication Form Customization for information on adding free form text and a hyperlink at the top of the Authentication Request Form.

8E6 TECHNOLOGIES, R3000 ENTERPRISEFILTERAUTHENTICATIONUSERGUIDE

87

CHAPTER 2: NETWORK SETUP SET UP THENETWORK FORAUTHENTICATION

Option 2

The following phrase/link displays, based on options selected at the Re-authenticationOptions field in the Block Page Authentication window:

Re-startyour system andre-login- This phrase displays for Option 1, whether or not either of the Reauthentication Options (Re-authentication, or Webbased Authentication) was selected in the Block Page Authentication window. If the user believes he/she was incorrectly blocked from a specified site or service, he/ she should re-start his/her machine and log back in.

Try re-authenticating your user profile - This link displays if “Re-authentication” was selected at the Reauthentication Options field, and an entry was made in the Logon Script Path field. When the user clicks this link, a window opens:

Fig. 2-19Re-authenticationoption

The user should click the logon.bat icon to run a script thatwill re-authenticate his/her profile on the network.

88

8E6 TECHNOLOGIES, R3000 ENTERPRISEFILTERAUTHENTICATIONUSERGUIDE