Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1030
Views
5
Helpful
2
Replies

Machine name instead of user on Windows 7

andrehramos1985
Level 1
Level 1

‎09-28-2012 07:12 AM

I am facing problem here that is driven my crazy. The Windows 7 machines send the manchine name instead of the username to my S160. As far as I noticed, it happens when the computer is not logged yet, so there's no user credentials and Windows 7 try to check connectivity using msftncsi.com.

Here I use surrogate IP address to all Identities and when the WBA block the connectivity check, the IP address get blocked as long as the Surrogate Timeout is configured.

Is there a soluction to it?

Could I use a Identitie using a Session Cookie? The problem is that, in this way the IP wouldn't be blocked and the unauthorized traffic would be cached on the computer instead of the WSA.

Labels:
0 Helpful
2 Replies 2

Ken Stieers
VIP
VIP

‎09-28-2012 08:09 AM

Andre,

What version are you running?  7.5 has a feature where it times out machine name based logins, typically caused by Microsoft's NSCI feature. 

http://www.cisco.com/en/US/docs/security/wsa/wsa7.5/release_notes/WSA_7.5.0_Release_Notes.pdf

Bottom of page 8

Alternatively you can set up an identity for the NSCI feature that doesn't require authentication...

There are a couple of other ways to work around this feature in the 7.5 End User Guide.

Ken

andrehramos1985
Level 1
Level 1
In response to Ken Stieers

‎09-28-2012 09:51 AM

Ken,

Thank you for the quick answer! In fact im not in version 7.5 as you said. I checked and the this version is available to upgrade. I verified that it has some changes in polices and other stuff, so it will be necessary some planning. But i'll do this upgrade as soon as possible.

Thank you again!

0 Helpful
Customers Also Viewed These Support Documents