Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

How do I get Websense to display PC name instead of IP address

Posted on 2009-04-10
10
Medium Priority
?
2,027 Views
Last Modified: 2013-11-08
We have Websense 6.3.2 running on a Windows 2003 server, using port mirroring with a Cisco ASA 5510.  Filtering is working the way we want it.  However, when we try to run a report using the reporting tools, the activity is listed by IP address instead of by user or by machine name.  Our DHCP server winds up giving people new IP addresses every few days, so this is not very effective for us.  

I checked the eimserver.ini file, and found DNSlookup was set to "AUTO".  I changed it to "ON", but that had no effect.  Where do I go to change this?
0
Comment
Question by:natjbrown
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
10 Comments
 
LVL 11

Expert Comment

by:billwharton
ID: 24117502
Try these steps and tell me if it works

# For Websense Explorer issues, verify that Hide User Names in Reports is not selected in Websense Manager for your Delegated Administrator. This is a frequent cause of the problem.
# Verify that directory objects can be added without error messages appearing.

How do you know if you receive error messages when you add directory objects?

Open the file websense.log and review any errors listed for User Service. Possible errors include cannot connect to LDAP server and invalid credentials.

    * If you see the error cannot connect to LDAP server:
         1. Verify that User Service is started. If you are running in mixed mode, you might have to run User Service as a domain\admin account.
         2. Verify that the port used to connect to your Directory Service is open and listening (netstat, telnet).
         3. Verify that the settings for the Directory Service are correct in Websense Manager > Server > Settings > Directory Service.

    * If you see the error invalid credentials:
         1. Re-enter the password for the Directory Service in Websense Manager > Server > Settings > Directory Service.
         2. If User Service is running as a domain\admin account, re-enter the password for User Service.
         3. Add a root context for the Directory Service. See KB article 2862.


# Verify that Filtering Service is able to retrieve the user-to-IP mapping from your Transparent Identification Agent (such as DC Agent or Logon Agent). To check this, run the ConsoleClient utility against port 15869.  See KB article 3349.
# If the user-to-IP mapping has no names in it, check the settings for your Transparent ID Agent in Websense Manager. Make sure that Enable Authentication is enabled for the desired Agent.
0
 
LVL 11

Expert Comment

by:billwharton
ID: 24117529
btw, have you installed the user identification agent as explained in this url?

Go to http://kb.websense.com and search for 2684 and you'll see the article i'm talking about
0
 
LVL 1

Author Comment

by:natjbrown
ID: 24117806
We are using a DC agent to direct who is able to access different groups of websites.  It appears to be working fine, and I can add a new directory object without error.

Where do I verify that Hide User Names in Reports is not selected in Websense Manager for my Delegated Administrator?
0
What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

 
LVL 1

Author Comment

by:natjbrown
ID: 24118812
I tried to verify that Filtering Service is able to retrieve the user-to-IP mapping from my Transparent Identification Agent (DC Agent) by running the ConsoleClient utility against port 15869.  

I got:
========================================
XID User Map PrintSelf
Snapshot time: 04-10-2009 14:03:41.226461
Number of entries in map is : 0
========================================

So obviously something isn't right there.
0
 
LVL 1

Author Comment

by:natjbrown
ID: 24119687
Where do I do this?
"# If the user-to-IP mapping has no names in it, check the settings for your Transparent ID Agent in Websense Manager. Make sure that Enable Authentication is enabled for the desired Agent."
0
 
LVL 14

Expert Comment

by:Ehab Salem
ID: 24248807
Open RealTimeAnalyzer and see first if it logs usernames or IPs.
If it logs IPs, then you have a problem in identifying users.
0
 
LVL 1

Author Comment

by:natjbrown
ID: 24359534
It appears to log IPs.  I have three ethernet ports on this sever, and it appears that some services are trying to use a port that they shouldn't.  I now have disabled one of the ports, and now the RealTimeAnalyzer does not show any traffic.  I am going to get someone else in to take a look at this mess.
0
 
LVL 8

Expert Comment

by:pgolding00
ID: 24810903
Would not DC agent, radius agent or one of the other transparent user agents do the trick? Check page 231 of this doc http://kb.websense.com/article.aspx?article=3133&p=12
0
 

Accepted Solution

by:
ee_auto earned 0 total points
ID: 26016266
Question PAQ'd, 500 points not refunded, and stored in the solution database.
0

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Concerto Cloud Services, a provider of fully managed private, public and hybrid cloud solutions, announced today it was named to the 20 Coolest Cloud Infrastructure Vendors Of The 2017 Cloud  (http://www.concertocloud.com/about/in-the-news/2017/02/0…
Many of the companies I’ve worked with have embraced cloud solutions due to their desire to “get out of the datacenter business.” The ability to achieve better security and availability, and the speed with which they are able to deploy, is far grea…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
Finding and deleting duplicate (picture) files can be a time consuming task. My wife and I, our three kids and their families all share one dilemma: Managing our pictures. Between desktops, laptops, phones, tablets, and cameras; over the last decade…
Suggested Courses

610 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question