Ok, I don't get it. I've got a tiny domain at home (win2k3 AD). For the family. Kids are getting older and wanting time on the computers, but I want to block them from the nasty stuff.
Searching around for a good firewall/web filter that will work with AD and so I end up here.
Untangle looks awesome and simple and free/cheap. So I install it. It IS awesome and simple and free/cheap!
So what I want to do is create rules based on Groups. I can't do that. Fine, because I can create separate racks with filters that will allow me to group users and give different accounts different access.
Like I said this is for my home network so it's not a huge problem to manage the racks this way. I want an "adults" rack and a "kids" rack. So I create them. in the Policy Manager I set a rule that should say if the AD user is "Kid1" or "kid2" then use the "NoPorn" Rack. In the No Porn Rack i have web filter set up to block bad stuff.
It doesn't work. I assume because I ONLY set AD user names as the criteria. From everything I've read - you HAVE to put in an IP. Well...what if I want to go to the kids room to fix something and need access to stuff I'm not giving them? or what if the kids go on the main PC and want to log on and do stuff? it seems to ONLY be filtering by IP...so my question is...
if it has to be done by IP, what's the point of having (and eventually paying for) the AD Connector and Policy Manager? as far as I can tell the AD connector doesn't really do anything except let you pull names...but not actually do anything with them.
what is it that I'm missing here?