Procedure to prevent or work around possible misidentification

To prevent or work around possible misidentification, configure your transparent identification agent to ignore logon names that are not associated with actual users.

Steps

  1. Use the Windows Services tool or /opt/Websense/WebsenseDaemonControl command to stop RADIUS Agent.
  2. Navigate to the bin directory (C:\Program Files\Websense\Web Security\bin or /opt/Websense/bin/, by default).
  3. Use a text editor to either create or open ignore.txt.
  4. Populate the file as follows. Place each entry on a separate line.
    • Add each user name that should be ignored on its own line. Your web protection software ignores these users, regardless of which machine they use.
    • To add a user name/machine pair, enter the user name, followed by a comma, and then the machine host name or IP address (ypark,YPARK-WS1). In this case, your web protection software ignores the specified user only on the specified machine.

    The following example shows correctly formatted entries:

    anonymous logon

    admin,WKSTA-NAME

    These examples are also supported as of v8.5.3:

    *, WKSTB-NAME
*, 10.209.34.56
*, 10.203.34.1-10.203.34.255

    In these examples, the Windows 7 service account anonymous logon is ignored on all machines, the user name admin is ignored only when associated with machine WKSTA-NAME, and logons for WKSTB-NAME, 10.209.34.56, and the network range 10.203.34.1 to 10.203.34.255 are ignored.

    With v8.5.3 and later, regular expressions are also supported as part of each of these entries.

  5. When you are finished making changes, save and close the file.
  6. Start RADIUS Agent.