Filtering Service

Filtering Service receives user logon information from RADIUS Agent as users log on to the network. At each transmission, only the record of logon sessions established since the last transmission is sent back to the server. This includes new users logged on to existing remote machines and new users logged on to new remote machines.

Filtering Service receives user data in the form of user name/IP address pairs (originating from RADIUS Agent’s map in local memory). When Filtering Service gets the IP address of a machine making an Internet request, the server matches the address with the corresponding user name provided by RADIUS Agent, allowing users to be identified transparently whenever they make Internet requests. Filtering Service then applies the policies assigned to those users or groups.

Filtering Service is the destination for the user information RADIUS Agent gleans from authentication requests. When you are troubleshooting user identification problems, be sure to determine whether Filtering Service is getting the latest and most accurate user data.

Your web protection software can be configured to prompt users to manually authenticate if it cannot obtain user information via RADIUS Agent. With manual authentication, if a user does not provide a valid user name and password, he or she is blocked from Internet access.

If a user cannot be identified transparently, and manual authentication is not enabled, a computer or network policies, or the Default policy, is applied to the request.