I
hope this is a stupid question or mistake on my part. I can't get session
authentication to work. I have 4.1 sp 5 and downloaded the latest version
of the session auth agent. After installing this on my machine, I configured
to ask for password every session. Allow request from any ip, and the rest
were defaults. I then configured the rule me@my_machine to any by http
by Session auth. I configured the action to ignorre user db, and to contact
agent at my_machine (I also tried source which is perfered). When I launch
a website from my machine, it never prompts me for auth. I also don't see
anything in my logs.
Hi,
is there any other rule in your rulebase accepting the connection?
If you are using authentication and there is another rule accepting the
connection without authentication - exactly this rule will match. It's
quite easy to check which rule matches, just choose long log and you will
see number of the matching rule in your log.
Rules for authentication match always directly before your clean-up
rule - independent of the number you have chosen for it.
Hope it helps,
best regards,
Matthias
http://www.fw-1.de
---
AERAsec Network Services and Security GmbH
Wagenberger Strasse 1
D-85662 Hohenbrunn
http://www.aerasec.de
|
