Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations TouchToneTommy on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Web security on Citrix Server

Status
Not open for further replies.
pgaliardo

pgaliardo

MIS
Nov 30, 2004
887
I am looking for a product that does web filtering and works with Terminal Server/Citrix. Let me explain. We currently use Symantec Web Security. Symantec is not supportted through a shared interface. All of our users access the web through Citrix - there are no local desktops. With Symamntec, I can only set security per machine, which means everyone has the same access.

I want to do this by user, but according to Symantec, I can't. The reason is, if a user logs onto the terminal server with admin rights, he has set the rights for everyone that logs in afterward. So every user inherits the first user's rights, regardless of their login.
alternatively, if a user logs in with no acess, the subsequesnt users have no access.

Is there anyone working in a complete Citrix environment that has successfully set up access rights to the Internet, based on the user profile?
 
Sort by date Sort by votes
I have the same problem. I need user based web filtering when all of my users are making web requests from the same IP (the terminal server). All of the solutions I have found identify the users starting with the IP that the request came from, and that always results in the same username being identified regardless of who actually made the web request.
 
Upvote 0 Downvote
The only product I have researched so far that does this is Pearl Echo from Pearl Software, as previously noted in this thread. I have not tried it yet, but it is the only product I have seen so far that specifically mentions Terminal Server and Citrix environments.
 
Upvote 0 Downvote

This may be a simple question, but let me reiterate what you are looking for to see if I understand this correctly. You want different users to be restricted from accessing different sites all through the same Terminal Server?

 
Upvote 0 Downvote
Basically, that's it. All of our users use thin clients. They access the Internet through the terminal server. Most web security/proxy programs, including Symantec, which we use, only see that as a single interface. So all security and logging is based on that 1 IP address of the terminal server. It does not have the ability to break it down into individual users.
 
Upvote 0 Downvote
Pgaliardo,

Ok, thanks for clarifying.

There is a tool that might help you accomplish most of what you are asking. SysTrack from Lakeside Software, designed specifically for Terminal Servers, can track per specific user id. The reporting facility specifies who accessed what site, when, and how frequently. SysTrack also has the ability to shut down sites you specify; but for the Terminal Server as a whole, not restriction based on each individual users.

Check it out when you have a chance

Good luck!
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

wavestar69
  • Locked
  • Question
Trouble starting WinFrame 1.7 after replacing server
Replies
0
Views
114
wavestar69
wavestar69
damienenglish
  • Locked
  • Question
Citrix Replication Fault Detection
Replies
0
Views
95
damienenglish
damienenglish
DreemaGurl
  • Locked
  • Question
Can't log on to Citrix through emote access portal
Replies
1
Views
239
ntinlin
ntinlin
Hfnet
  • Locked
  • Question
Office 2010 KMS stoppped working on PVS Citrix
Replies
0
Views
80
Hfnet
Hfnet
MattRoche
  • Locked
  • Question
Citrix Receiver Pass-through Authentication on Wyse C90LEW terminal
Replies
0
Views
62
MattRoche
MattRoche

Part and Inventory Search

Sponsor

Back
Top