Looking for a URL filtering solution. I currently have an ASA5520 as our main firewall. Looking to intergrate Websense and I have a few questions.
- One real requirement from our security guys is the need for authentication in the logs. Essentially they need to be able to pull web surfing logs and trace that back to a username. I currently do it via a syslog appliance but there are times when that user's ip has changed and its not bulletproof.
Can websense force authentication ?
If our users are logged into the domain, can websense pick up the NTLM authentication ?
If so can this authentication be seamless to the user. I.E. Not having them log into a web page before they can surf the web ?
Are there any cut thru proxy feature internal to the ASA that would allow me to log via username who is surfing what ?
Any help would be appreciated.