Filtering Service

Filtering Service receives user logon information from eDirectory Agent as users log on to the network. At each transmission, only the record of logon sessions established since the last transmission is sent back to the server. This includes new users logged on to existing machines and new users logged on to new machines.

Filtering Service receives user data in the form of user name/IP address pairs (originating from eDirectory Agent’s map in local memory). When Filtering Service gets the IP address of a machine making an Internet request, it matches the address with the corresponding user name provided by eDirectory Agent, allowing users to be identified transparently whenever they make Internet requests. Filtering Service then applies the policies assigned to those users or groups.

When you are troubleshooting user identification problems, be sure to determine whether Filtering Service is getting the latest and most accurate user data from eDirectory Agent.

Filtering Service can be configured to prompt users to manually authenticate if they cannot be identified transparently. With manual authentication, users that do not provide a valid user name and password are blocked from Internet access.

If a user cannot be identified transparently and manual authentication is not enabled, Filtering Services applies a computer or network (IP address-based) policy, or on the Default policy.