i am new at ASA 5520 and CSC module (version 6.3)
I would like to know what configurations are posible for my network users if i use the CSC trendmicro blocking using IP address or AD users,
i know that i could select users/groups from the windows AD or select the IP addresses that i want to use for blocking or permit http traffic (url, etc).
My question is on the client side, how the CSC knows what AD users is the one that is requesting certain http pages, or if i user a proxy server, i lose the IP/users options on the CSC??..or i could use authentication options on the proxy for example?....
I have been looking information about this but the manuals only explain the configuration options that i could configure on the CSC TrendMicro page, but it doesn't say which network environment i could use or need.
hope i made myself clear,
Hello Juan Pablo,
How the CSC knows what AD users is the one that is requesting certain http pages?
On one computer on the AD domain ( Not necesary the Active directoy server) the ID agent will be installed, this one will keep a communication with the AD agent and the CSC module.
Each time a user log in or log off the ID agent will mapped the user to an ip address, so as you can see the ID agent will monitor windows events 672 and 673 and keep track of that user.
Afterwards if that user goes to the internet based on the policies you have set up on the CSC the user will be allowed or not.
Hope this helps.
Rate helpful posts!!
Hello Julio, thanks for your response,
And what if i use a proxy server?, all my users will use the proxy,
so i'll lose the option to block users or ip?, with ip blocking i know there is no chance, because the ip that the CSC will se will be the proxy's, but with users, is there a chance, is these ID agent will help me although i use the proxy?.