I have a 200 seat license with 120 users in the company. I have 3 floors divided into VLANS each with its own subnet/DHCP scope of 10-154. Having those 3 subnet's listed in the Clients\Networks area obviously exceeds my license count but I only have 120 users. Do I have to specify the networks? This is integrated with an ASA and all HTTP traffic is directed to the Websense server via the ASA. I get a daily message saying that the WS software is set to monitor more clients than your subscription allows. If I take out those subnet's and just let the WS server track the IP addresses as they come through would that work better?
↧
License usage
↧
Websense Web Cloud - BUG Endpoint authentication of user
Hi,
I found out, that Endpoint assign a policy by chance if the user does not exist on the portal.
Expample:
ActiveDirectory User Peter exists on the protal and is assigned by group to the policy A.
Peter is logged in on the Windows-PC and everything is working. Endpoint get the correct policy and Peter is browsing over the correct policy A.
Now: on the pc there exists some default windows-services. Some Services try to connect to the internet. The services are runnind under a internal-OS-User like "system" or "Network". The Endpoint get in this way a policy by chance and modify so the PAC-File in the Browser. So if Peter is now brwosing, he browses over the wrong PAC-File and so with a wrong Policy!!!
Only if Peter open and closes the Browser, he will get back the correct Pac-File/Policy, which is assigned to his Windows-User.
Websense should prevent this autoregistrations by chance or prevent that internatl-OS-Users can register itself over the Endpoint.
I think this is a very critical issue! It could be, that users get in this way a policy where nothing is blocked!!
A internal-OS-User looks then in this way on the protal:
| nt authority|system.local | nt authority.system.local@35719-31068-nosuchdomain.autoregistration.proxy | nt authority\system.local |
Bye
↧
↧
Unable to log on to V7.8 using Domain Accounts
↧
Custom Reporting Options
It would be quite awesome if you could create custom reports with more than two "drill downs".
For example...I would love to be able to create a report that shows all Bot related activity for X Date and have it sorted by user-->category-->URL and all the detailed info that goes with it.
I have only been using Websense for a short time but the reporting in Triton is quite lacking.
Andrew
↧
Best way to filter Citrix users
I have a new WSGA 7.8.3 environment with V10Ks. I need to filter and log traffic from Citrix users. In your opinions is it better to use the Citrix Plugin or IWA? I have Citrix users that are on the LAN and well as connect in from their home Internet. My problem is that we use provisioning servers and cant get a clear answer from documents on using the Citrix plugin, we also have clients that are not on the domain that need to be filtered. Any thoughts?
↧
↧
Ability of Websense to Detect Time Zone of User or Options to Choose Time Zones on Report
Normal 0 false false false EN-US JA X-NONE
Every day, we pull up reports under Reporting > Web Reports and we need option to choose a time zone for each reports since our clients are global. For now, it appears that the time indicated on the reports is our local time. It brought confusion to our clients and tracking the exact time of events is important. It would be best if there's an automatic setting that Websense can detect where on earth are our client are ( if possible please help us so ).
↧
Monitor for ThreatScope time-out activities
As title. It is important to know whether the ant_server has timed out or not to ensure each file is being scanned and analyzed.
↧
Support for filtering users on Citrix XenApp 6.5
We upgraded from Citrix Presentation Manager 4.5 to XenApp 6.5 in the fall and from what I can tell, 7.5, 7.6 nor 7.7 -- none of these Websense Web Security products support integration with XenApp 6.5 only 5 and 6.0 Websense has always supported Citrix integration (for user based policy), and 6.5 has been out for over a year... I'm really disappointed that Websense has not provided support for it, unless I just don't see where /how ? How are others handling this issue? I suppose I could continue filtering with a general policy, but when human resources asks me for a report to show web browsing activity for an individual citrix user, I will be left explaining that I cannot provide it .... Is there an ETA for XenApp 6.5 integration support ? This is really important and may result in my searchign for another product/solution all together.. which would be a shame.
↧
URL exception per user is it possible?
Is it possible to whitelist/black list a site per user bases?
Ideally i would like to allow or block certain websites per department base.
I am using websense triton cloud security only with no I-Series, with Endpoint, and pac file.
↧
↧
Option to Encrypt sensitive data to CD/DVD media instead of automatically blocking
We have data security policies set up to encrypt files containing sensitive data (PII, Medical info..etc) when they are transferred to removable media. The policies work as intended when sensitive data is transferred to USB devices but fail with CD/DVD media.
Instead of having the files encrypted as defined in the policies, they are instead blocked.
The only available solutions are:
1. to have the users use a USB device
2. Bypass DLP which means transferring sensitive data unencrypted - which is definitely what we do not want to do.
The issue has been ongoing since v7.7.3. We now have v7.8.4 and that has caused a lot of aggravation and frustration for our users.
I have had several troubleshooting sessions with Support but they have been unable to resolve the issue thus far.
Could you include the option to encrypt sensitive data when transferred to a CD/DVD media and/or provide a hotfix?
↧
IWA NTLM or Kerberos Error alerting
When using Integrated Windows Authentication engine in WCG a number of counters are collected in the summary page. This includes 'NTLM request errors' and 'Kerberos request errors'.
These errors when they occur, usually result in abnormal client identification and incorrect filtering.
Currently there is no alert feature available to notify when these errors occur and issues are usually reported by end users instead of an administrative alert.
An option to alert or notify on these errors would be useful.
↧
v7.7.3 Off Box Software Loaction Deployment
Normal 0 false false false EN-GB X-NONE X-NONE
I’m about to deploy a new v7.7.3 v5000 G2 appliance. I want to install the off appliance software (Log Database, Log Server, Real Time Monitor, DC Agent etc….) in a different part of our wide area network.
The two will be connected via a 100MB link, logging is around 70-80GB a month.
Is splitting the roles across a wide area network an acceptable approach or is it better to install all components on the same local area network?
↧
Executive Allow/Block Approval for Websense Categories
My boss wants a static form that he can use to pick and choose what web categories to block and allow. Due to how web categories change and split due to the Internet constantly changing manually creating such a form is near impossible.
Any suggestions on a way web categories could be exported to a format that could be sent to an executive for approval?
(This particular executive is insisting on a static paper form. He refuses to login to the management portal.)
Thank you in advance for any advice.
↧
↧
Possible for users in nested AD groups to sync with the Websense policy?
Hello,
I am responsible for the US rollout of Websense for my company but do not have access to change sync settings with Active Directory. Currently, our US Websense policy is sync'ed with an AD group, call it "US-Websense". Any individual users I add to this group sync just fine. But any AD groups that I add to "US-Websense", the users in those groups do NOT sync with the policy. For example, if I add site distribution lists, or security groups. I already opened a case with technical support and they made it seem like it was possible, but it's been a month and those responsible for the sync with AD still can't make it happen.
Does anyone here have experience with this? I can't imagine you can't use preexisting AD security and distribution lists to add users to the policy, and that every user must be individually added.
Please let me know. I've given up on waiting for this and did a dsget to create a list of all the individual users to manually add them all but moving forward that is much harder to maintain.
Thanks.
↧
Websense reporting 6.3
Hello,
I am attempting to pull URL hits of all of our endpoint PCs in our production environment. I am using Websense reporting tools 6.3 These particular PCs are not using Citrix and they do not have user credentials tied to them. So, I am trying to pull this massive report via source IP. The problem I have is that we have a very large network and I cannot find a mask for these IP addresses. for example, I want to pull all IPs that end in .45 so, I would think there would be some sort of mask so I could simply put X.X.X.45 and pull all those IPs that end with .45 Through searching and testing this has proven fruitless.
Does anyone have a suggestion as what might be the best approach for this?
↧
No data displayed on threats tab after upgrade to 7.8.4
After upgrading to 7.8.4 there is no current data displayed on the Threats tab in the Dashboard. It seems that everything else is working as it should. The rest of the tabs contain current data and I am able to view activity through the Investigative Reports area. OS is 2008 R2. Is anyone else experiencing this?
↧
Triton Security 7.6 config for vmware
I am migrating to a virtual environment and want to move my physical server to vMware environment. Currently I have two NIC interfaces on the server; one that monitors and one for the server with the proper configuration on the switch. this has been functioning well for some time.
now, I am installing the non integrated Triton Security 7.6 on a virtual server and need assistance with NIC and vnic configuration. is there documentation on how to configure the server NIC's and the vnics? I think this is where my issues are because I am to this point unable to filter
Thanks in advanced.
↧
↧
Thousands of XML files in bin: urllist_20141210042452_6240.xml
Hello,
The disk volume which my Websense directory is on keeps reaching capacity every few days due to thousands of XML files in the bin directory, format: urllist_20141210042452_6240.xml.
At one point the total size of these was ~40GB.
Can someone reveal what these are for and how to stop them being generated?
Thanks.
↧
Internal Root CA import not working after 7.8.4
| Subject | Internal root CA import doesnt work after upgrade to 7.8.4 | ||
| Description | I have created a private key and certificate for my new CentOS 8.4 Websense 7.8.4 server. Importing works fine, when I backup it (download) it looks ok. However, it seems that Websense doenst re-encrypt the HTTPS stream with the full certificate path after 7.8.4. On 7.8.2 it works fine, after upgrading to 7.8.4 it still works fine, but after reinstalling the same certificates it stops working and users get an insecure message. | ||
[This is also a (stale) support ticket btw]
↧
Worth upgrading from 7.8.1 to 7.8.4?
Both of my websense servers are currently running version 7.8.1 - is it worth upgrading to 7.8.4? There are no performance/filtering issues that I know of, but I always like to stay up to date with our security components. Also we only utilize Websense web security at this time.
↧