Firewall Wizards mailing list archives
RE: Internet access control tied to users/group
From: "Stiennon,Richard" <richard.stiennon () gartner com>
Date: Wed, 7 Feb 2001 15:37:46 -0500
And of course, MS ISA server does this. -----Original Message----- From: John Adams [mailto:jna () retina net] Sent: Monday, February 05, 2001 5:16 PM To: Anthony Di Donato Cc: firewall-wizards () nfr net Subject: Re: [fw-wiz] Internet access control tied to users/group Cisco PIX can do this based on RADIUS or TACACS groups, as far as NT integration goes, you could run an NT Radius server. Alternately you can run the Microsoft proxy server. -john On 2 Feb 2001, Anthony Di Donato wrote:
Citrix Extranet does thisHi Folks, I have a need locate a proxy server (filtering ifpossible) or firewallto authorize services for users in an NT Domainsystem AND provideaccess control based upon group membership.This could be one or twosystems (two servers would include an internalserver to tie into NTDomains and authorize internal users for servicesand the second afirewall for the perimeter control). Thus far I've determined that the choices are prettylimited. I'vefound Border Manager can tie into NDS and applypolicy based on definedgroups. Any other possibilities out there? Other information: This is an environment with alotof disklessworkstations and most of them get their servicethrough Citrix serversso the firewall either would see a dynamic addressfor some specialservices or the citrix servers IP for the majority ofusers.TIA.___________________________________________ ____firewall-wizards mailing list firewall-wizards () nfr com http://www.nfr.com/mailman/listinfo/firewall-wizards_______________________________________________ firewall-wizards mailing list firewall-wizards () nfr com http://www.nfr.com/mailman/listinfo/firewall-wizards
-- J. Adams http://www.retina.net/~jna You are supposed to be a consumer, a black hole for goods, advertising and content. They only want to allocate enough upstream bandwidth for 10,000,000 buy buttons. Producing or sharing information is a subversive act and will not be tolerated. -anonymous coward on /. _______________________________________________ firewall-wizards mailing list firewall-wizards () nfr com http://www.nfr.com/mailman/listinfo/firewall-wizards _______________________________________________ firewall-wizards mailing list firewall-wizards () nfr com http://www.nfr.com/mailman/listinfo/firewall-wizards
Current thread:
- Re: Internet access control tied to users/group Anthony Di Donato (Feb 03)
- Re: Internet access control tied to users/group John Adams (Feb 07)
- <Possible follow-ups>
- RE: Internet access control tied to users/group Stiennon,Richard (Feb 08)
- RE: Internet access control tied to users/group Ben Nagy (Feb 08)