Solved

Sonicwall content filter, users keep getting default policy

Posted on 2016-10-18
7
23 Views
Last Modified: 2016-11-22
Hi
 We are using a Dell Sonicwall NSA 4600 on Firmware  SonicOS Enhanced 6.2.6.0-20n, we use the content filtering module on it to restrict users website access , using SSO and LDAP to AD.
 Through out the day users will randomly lose their internet policy and get the default policy blocking majority of websites. I have found by locking and unlocking the PC it restablishes the policy and they can continue in the majority of scenarios to browse the internet again.

 I have disabled AV (SEP) and it still happens, all users are on Windows 7.

Any help would be appreciated!

Thanks
0
Comment
Question by:adviceplease
  • 4
  • 3
7 Comments
 
LVL 20

Expert Comment

by:masnrock
Comment Utility
Have you checked the power management settings on the network cards?

Another way you could try doing the policies is by MAC address and IP. However, this also assumes that users are not sharing machines...
0
 

Author Comment

by:adviceplease
Comment Utility
No its not power management settings as the users are using other applications at the time

MAC address /IP is not an option due to the size of the estate

thanks
0
 
LVL 20

Expert Comment

by:masnrock
Comment Utility
Do multiple users share machines? SSO doesn't work well with switching users. You'd have to make sure each user signs off, and the new user signs in.

You may also want to look at excluding service accounts, as even Sonicwall has admitted it's caused issues for them:
https://support.software.dell.com/kb/sw5589
0
What Is Threat Intelligence?

Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

 

Author Comment

by:adviceplease
Comment Utility
the users effected aren't using multiple machines. all have HP laptops

is random but happens to a lot of people throughout the day,everyday

if these users lock their machines and unlock using their domain credentials again , it works

very frustrating!
0
 
LVL 20

Expert Comment

by:masnrock
Comment Utility
Just noticed your last post. However, I'd suggest that you check to see if there is a communication issue between SSO agent and the server. That seems to be the most likely cause.

However, at this rate, if you still have the support, I'd contact the support engineers at Sonicwall.
0
 

Accepted Solution

by:
adviceplease earned 0 total points
Comment Utility
Hi All
 Several issues here that i have now resolved and all working.

If the Domain User Profile has been copied from another Domain user when originally created , Sonicwall policies don't like the profile deleted the profile and changed the name slighly, no further issues

for the majority of the other users the fix was :

- make probe to WMI first on the SonicWALL and also on SSO agent.

- To Make WMI probing first goto Firewall users -> Settings -> sso agent -> configure -> users tab -> Probe users for select WMI and hit apply/ok.

so needs changing on both SSO agent (might be a dedicated server or on your DC's) and the actual Sonicwall

in some cases it can be firewall on the endpoints, you need to make sure TCP/UDP 1726,135,445 and 139 on windows firewall and Client AV on all machines aren't blocked
0
 

Author Closing Comment

by:adviceplease
Comment Utility
found out for myself........
0

Featured Post

What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

Join & Write a Comment

Suggested Solutions

Hi All,  Recently I have installed and configured a Sonicwall NS220 in the network as a firewall and Internet access gateway. All was working fine until users started reporting that they cannot use the Cisco VPN client to connect to the customer'…
The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
This tutorial will show how to configure a new Backup Exec 2012 server and move an existing database to that server with the use of the BEUtility. Install Backup Exec 2012 on the new server and apply all of the latest hotfixes and service packs. The…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now