Quick Summary of 8e6 Authentication:
The transparent integration
of R3000 web filter into Windows Domain and ability to leverage AD
user/groups for web filter policy. The result is improved logging since all web traffic in Reporter Client will be tied to AD username.
The two transparent options are (a) distributed 8e6 Authenticator --
executable spawned on workstation via domain logon script, and (b)
central AD Agent. Centrally installed and operated software to monitor
domain controllers and maintain user identity. R3000 talks with AD
Agent for identity information.
8e6 authentication via AD_Agent:
PRO:
Domain integration
orchestrated from "central" place. No need for updated to GPO or
domain logon scripts to affect workstations.
CON:
you need separate Windows Server boxes dedicated to running 8e6 AD_Agent. The # of AD_Agent instances depends on domain size.
8e6 authentication via 8e6 Authenticator agent:
PRO:
No need for dedicated server Windows Servers.
CON:
Executable agent spawned on workstation via domain logon script.
