Re: How to trace all the users accessing Internet.
- From: mathif@xxxxxxxxxxxxxxx
- To: isalist@xxxxxxxxxxxxx
- Date: Mon, 10 May 2004 18:41:28 +0300
I have enabled authentication on outgoing web listener and so i can see
"Domain\Username" I want to dig all those usernames.
Thanks,
Athif
-----Original Message-----
From: cismic [mailto:cismic@xxxxxxx]
Sent: Monday, 10 May 2004 4:59 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] Re: How to trace all the users accessing Internet.
http://www.ISAserver.org
Hi Athif,
When your users are accessing the outside world of the internet the web
proxy logs won't show
"DOMAIN\USERNAME" in the logs unless you specifiy to use authenticated
connections.
So, what that measn is that you can setup client side rules based on groups
or individual
users rather then looking in the proxy logs. As a general rule, I like
adding my own agent
settings to the system registry where, explorer is installed that includes
things such as machine name
and user name. That way when I look in the ISA logs I can see what machine
and what user accessed
the web. This allows me to keep the anonymous settings etc.
I guess there are several ways and methods to setup the usage of ISA and
polices and I only mention
the method that I use.
Thank you,
Joseph
----- Original Message -----
From: mathif@xxxxxxxxxxxxxxx <mailto:mathif@xxxxxxxxxxxxxxx>
To: [ISAserver.org Discussion List] <mailto:isalist@xxxxxxxxxxxxx>
Sent: Sunday, May 09, 2004 7:28 AM
Subject: [isalist] How to trace all the users accessing Internet.
http://www.ISAserver.org <http://www.ISAserver.org>
Hi Folks,
I actually need to know all the users accessing Internet thru ISA to define
the access policies as the currently therez no access policy.
To my knowledge, the best method can be thru the Web Proxy Logs. But the log
file is more that 1 GB and it will be difficult to drill down and trace all
those users. Is there a way like any script which can take out all those
"DOMAIN\username" from the logfiles or is there any other short cut method
for this??!
Thanks in Advance,
Athif...!
-----------------------------------------------------
This email and any files transmitted with it are confidential and intended
solely for the use of the individual or entity to whom/which they are
addressed. If you have received this email in error please notify the system
manager at the following email address: sadmin@xxxxxxxxxxxxxxx
<mailto:sadmin@xxxxxxxxxxxxxxx>. Please note that any views or opinions
presented in this email are solely those of the author and do not
necessarily represent those of Al Faisaliah Group. Internet communications
cannot be guaranteed to be secure or error-free as information could be
intercepted, corrupted, lost, arrive late or contain viruses. The sender
therefore does not accept liability for any errors or omissions in the
context of this message, which arise as a result of Internet transmission.
Finally, the recipient should check this email and any attachments for the
presence of viruses. Al Faisaliah Group accepts no liability for any damage
caused by any virus transmitted by this email.
-----------------------------------------------------
Other related posts:
