Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
6583
Views
0
Helpful
15
Replies

How long does ironport wsa cache ad credentials at a workstation?

keithsauer507
Level 5
Level 5

‎01-16-2015 01:06 PM

Here is an issue.

 

Say a person logs onto a workstation with limited internet access.  Almost all internet sites are blocked per company policy.  They log off the computer and another individual logs into the workstation.  This individual should have internet access with a different policy.  However the Ironport still thinks the last person is logged in, so they cannot access anything on the internet.

 

How do you circumvent this issue?

We have an S160 running 7.5.2-304 and we are a Microsoft Windows organization.

Under Security Services > End User Notification, we redirect the blocked notification page to a custom one on another server/ironport/stop.asp.  We had to remove the reauthenticate user button because either it wouldn't always come up anyway, or we would get http 500 server errors.  So how else can I reauthenticate the user?

1 person had this problem
Labels:
0 Helpful
15 Replies 15

Ken Stieers
VIP
VIP
In response to keithsauer507

‎01-28-2015 11:18 AM

There is an issue (bug? Weirdness with how MS stuff works) when you RDP to a box and login.

Since the current RDP client actually checks with AD before it lets you connect to the other machine, your local machine shows up as the account you RDP'd with, NOT your account. (because the most recent login from that IP was the account...)

 

I have this issue when I rdp to servers with service accounts...

Your users, who don't have/use multiple accounts won't see this issue.

 

0 Helpful
Customers Also Viewed These Support Documents