Web Protection: Terminal Server Support for Authenticated Transparent Proxy
At the moment, the Transparent proxy works by associating credentials with the IP of the "user". Unfortunately, this means that the first Person who authenticates from a Terminal server (like Citrix) authenticates all Users from this Terminal server. Can you change this to Cookie Based or something so authentication works for multiple users sharing the same "IP"?
I'm not sure how it might be accomplished, but it sure would be cool to have...
Setting up a Terminal Server to work in explicit proxy mode avoids this problem.
Alex Hargrove commented
Isn't this accomplished with the Client Authentication agent?
I'm on 9.1 now and still miss this feature. Is there anything planned for future releases?
Chip Severance commented
Yes! Fortigate can do this - would love to see Sophos add this feature!