Filter
Top Products
User Management
1082
SonicOS 5.8.1 Administrator Guide
The second setting is appropriate for user traffic that does not need to be authenticated, and
triggering SSO might cause an unacceptable delay for the service.
SSO bypass settings do not apply when SSO is triggered by firewall access rules requiring user
authentication. To configure this type of SSO bypass, add access rules that do not require user
authentication for the affected traffic. See “Adding Access Rules” on page 608 for more
information on configuring access rules.
Note By default, Linux and Mac users who are not authenticated by SSO via Samba are assigned
the default content filtering policy. To redirect all such users who are not authenticated by
SSO to manually enter their credentials, create an access rule from the WAN zone to the
LAN zone for the HTTP service with Users Allowed set to All. Then configure the
appropriate CFS policy for the users or user groups. See “Adding Access Rules” on
page 608 for more information on configuring access rules.
Step 27 Click the Terminal Services tab. The Terminal Services Agent Settings page displays.
Step 28 Within this page, on the Terminal Services Agents tab, click the Add button. The page is
updated to display a new row in the table at the top, and new input fields in the lower half of the
page.
For existing agents, a green LED-style icon next to an agent indicates that
the agent is up and
running. A red LED icon indicates that the agent is down. A yellow LED icon means that the
TSA is idle and the appliance has not heard anything from it for 5 minutes or more. Because
TSA sends notifications to the appliance rather than the appliance sending requests to the
agent, a lack of notifications could mean that there is a problem, but more likely means simply
that no user on the terminal server is currently doing anything.
Step 29 In the Host Name or IP Address(es) field, enter the name or IP address of the terminal server
on which SonicWALL TSA is installed. If the terminal server is multi-homed (has multiple IP
addresses) and you are identifying the host by IP address rather than DNS name, enter all the
IP addresses as a comma-separated list.