Solved: Please review the below urls

mfilipovski · ‎12-16-2016

Hello,

Using 5508-x with FMC6.1 and that part works fine. I have a realm and user agent setup and that part works. I want to do URL filtering on users based on passive authentication.

I have a access-rule based on a testuser but it does not block access to my URLS. The URL filtering works if i base the filtering on networks.

Is it supposed to work with passive authentication?

Martin

syeda3 · ‎12-22-2016

Please review the below urls which might be useful for your issue with the URL Filter along with the configuration example for URL Filtering.

http://www.cisco.com/c/en/us/td/docs/security/firepower/610/relnotes/Firepower_System_Release_Notes_Version_610.html

http://www.cisco.com/c/en/us/support/docs/security/firesight-management-center/118852-technote-firesight-00.html

http://www.cisco.com/c/en/us/support/docs/security/firesight-management-center/117956-technote-sourcefire-00.html

View solution in original post

syeda3 · ‎12-22-2016

Please review the below urls which might be useful for your issue with the URL Filter along with the configuration example for URL Filtering.

http://www.cisco.com/c/en/us/td/docs/security/firepower/610/relnotes/Firepower_System_Release_Notes_Version_610.html

http://www.cisco.com/c/en/us/support/docs/security/firesight-management-center/118852-technote-firesight-00.html

http://www.cisco.com/c/en/us/support/docs/security/firesight-management-center/117956-technote-sourcefire-00.html

mfilipovski · ‎12-22-2016

Hi!

Gonna look at the urls tomorrow. I have been testing bit more and sometimes i get the passive authentication to block the testuser. Not sure if it has to do with the login part on the computer. If the user has been logged in for one hour it does not block. If i logout/in then it usally blocks.

mfilipovski · ‎01-26-2017

I moved the user-agent to a fresh installed windows server 2012r2 and it has been stable since 3 weeks back.

Thanks

FMC6.1 URL filter passive authentication