Connect. Communicate. Collaborate. Securely.

Home » Kerio User Forums » Kerio Control » google.com bypasses authentication
  •  
Mota

Messages: 3
Karma: 0
Send a private message to this user
Hi everyone
I have installed Kerio Control 9.1.4 build 1535 as firewall and internet user manager in a company. Everything works fine except the google.com opens without authentication and user even can search with it! But when they click on one of the search results they're redirected to Kerio login page. Any suggestions?!!
  •  
KCAP

Messages: 86
Karma: 2
Send a private message to this user
Hi,
google.com is a https site,
when click on a search item it will probably go to a http site
you probably set "Requiring user authentication when accessing web pages" this is only for http and not https:

You can script that a non secure webpage automatically opens when a user logs on to the network, so the user logs in

teun

[Updated on: Wed, 14 December 2016 21:20]


Teun
KCAP [NL]
  •  
Mota

Messages: 3
Karma: 0
Send a private message to this user
Thank you very much. You mean I should set a non-secure website as homepage for my Active Directory users? Is there a solution that I can address this through Kerio Control?
  •  
Brian Carmichael (Kerio)

Messages: 617
Karma: 61
Send a private message to this user
All possible authentication options are described here http://kb.kerio.com/product/kerio-control/server-configurati on-kerio-control/authenticating-users-to-kerio-control-1811. html
As KCAP indicated, you could set a non-secure page as each user's homepage in those situations where you are using web based user authentication via redirection to the firewall login.

Brian Carmichael
Senior Technical Marketing Engineer | Kerio
Stay Connected Anytime, Anywhere. Discover Kerio Cloud!
  •  
Mota

Messages: 3
Karma: 0
Send a private message to this user
Thank you Brian. I did the same thing you said. But Kerio must think of a way to address this problem! Rolling Eyes
  •  
KlausFFOS

Messages: 21
Karma: 0
Send a private message to this user
Actually we've had success with enabling HTTPS filtering and then distributing a certificate for the firewall via a GPO for all browsers. That has made our users be able to browse HTTP and HTTPS sites only when authorized.
Previous Topic: Configuring asymmetric quota rules...
Next Topic: "unable to complete pppoe discovery" when use pppoe
Goto Forum:
  


Disclaimer:
Kerio discussion forums are intended for open communication between forum members and may contain information and material posted by members which may be useful in learning about Kerio products. The discussion forums are not intended to provide technical support for any specific product. Any information implied or expressed in the discussion forums is that of the posting member. Kerio is in no way responsible for the information posted in the forums, or its accuracy. Kerio employees may participate in the discussions, but their postings do not represent an offical position of the company on any issues raised or discussed. Kerio reserves the right to monitor and maintain the forums to promote free and accurate exchange of information.

Current Time: Sat Mar 25 14:28:41 CET 2017

Total time taken to generate the page: 0.01126 seconds
.:: Contact :: Home ::.
Powered by: FUDforum 3.0.4.