Firewall rule source e-directory, without Astaro Authentication client
When creating a packet filter with source e-Directory user, there needs to be a client where the user needs to be authenticated on.
My idea is to do this LDAP based.
Ilias el Matani commented
Astaro provides an authentication client for Windows so that users directly authenticate at the ASG. This gives user-based control on web surfing and network traffic by, for example, creating firewall rules based on user networks or group networks.
Additionally, wherever possible, IP addresses, hostnames, and the like are replaced by usernames to provide a better readability of reporting data and objects.
could you give a little more background, please?
Great idea. It is within Astaro not possible to grant specific users rights to allow access for a specific application. For example remote desktop to a specific address is only allowed for several users. Those users have a dynamic address. this is only a small example. I hope it will be realized.