We currently have a NSA 240 running 184.108.40.206-127o with SSO agents running Directory Connector 3.6.56. The problem we have is when user A logs off a PC and user B logs in, the sonicwall still has the active session of user A. User B then also has the CFS policy assigned to user A. We are using NetAPI for the query source which seems to be the most accurate in my tests using the Directory Connector Diag tool, even though it says its supposed to be the least accurate. If I kill the users session in the sonicwall the new users CFS policy is correctly identified but this would be a hassle to manage.
Has anyone had a better experience using WMI or DC logs when multiple users share a PC with different CFS policies?
Thanks in advance.