Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I am having trouble getting my WSA S6xx to authenticate using Kerberos going though a F5 load balancer.
Looking at access-logs only NTLM is being used. I if move Identity to just Kerberos all I receive is '407'
Any help with this is appreciated .
...
I have users that I need to block/allow from/to certain websites. Since their devices are DHCP and thier address could change, can I use the FQDN device name in Identity or Access policies? I am not see this in the user guide as a option.
Thank you...
I am coming from Bluecoat and we have several rules that are 'Not' something. Example
Rule 1: Src:10.0.0.0 255.254.0.0 dst: bing.com action 'ALLOW'
Rule 2: Not Src:10.0.0.0 255.254.0.0 or 172.16.0.0 255.255.255.0 DST: google.com, yahoo.com action ...
In Bluecoat, you can control access by adding an site URL like this 'creditrepairfirm.com/slides/show/' to a custom 'URL Category Object' and have BC either block or allow access to creditrepairfirm.com and it path compont '/slides/show/'
I tryed th...
I get that but, what I am trying to do is say:
not ip addresses x, y, z then -> custom url
The idea of this is that if you are not one of the three ip address then you can access the custom url
In bluecoat you can do a 'negate' on a group
Tom
Thank you Christoph Moormann. I was expecting something more complacated here. I never just tried creditrepairfirm.com/slides/show/ in the advanced I was trying different combo of regular expression statements instead of the 'easy' approach. .
Thank you Handy Putra. If I do put \. does that mean the site has to be tom.creditrepairfirm.com/slide/show/ or will creditrepairfirm.com/slide/show/ work also?
