Somehow Barracuda's Web Filter does this. I know you have to install a DC client on the domain controllers that key's off of event log logins/offs and reports to the filter. Probably not what you need but it's an option.
Curtis LaMasters http://www.curtis-lamasters.com http://www.builtnetworks.com On Tue, Apr 21, 2009 at 11:32 PM, Dave Warren <dave-use...@djwcomputers.com> wrote: > In message > <ffb190ee79ba57428e06ab63df10963bfcbe1d9...@hivemind.integrita.internal> > Dimitri Rodis > <dimit...@integritasystems.com> was claimed > to have wrote: > >>Single Sign-on (aka one set of credentials) is one thing, the captive portal's >>ability to automatically _receive_ (and authenticate) the credentials from the >>requesting client/browser is another. Unless I'm misunderstanding, Ryan wants >>to get rid of the username/password prompt from the captive portal, and have >>the "current" windows logon credentials automatically pass to the captive >>portal, which is currently not possible with pfSense-- ISA Server is the only >>thing I know of that does this. > > It can be done by any 'ol proxy that supports kerberos, but the browser > needs to know it's talking to a proxy to even try to authenticate, so it > would still take some browser configuration. > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: support-unsubscr...@pfsense.com > For additional commands, e-mail: support-h...@pfsense.com > > Commercial support available - https://portal.pfsense.org > > --------------------------------------------------------------------- To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org