Surf Control v5.5 manual Methods of Installing EUM, EUM Agent on Domain Controllers

Page 19

2

INSTALLATION DECISIONS

User Name Resolution

METHODS OF INSTALLING EUM

You can install EUM in one of two ways:

1Install an EUM Agent on your domain controllers or Novell NetWare NDS Tree Server.

2Install an EUM Login Agent on your network that can monitor all users via a login script. (page 17)

Installing the EUM Agent on your Domain controllers works well in a LAN environment where all users log on to the Windows domain. If you do not have access to, or do not wish to install the EUM Agent on your domain controller, you can use the EUM Login Agent.

THE EUM AGENT ON DOMAIN CONTROLLERS

You can install the EUM Agent on domain controllers which have the following operating systems:

Windows NT

Windows 2000

Windows 2003 (Standard and Enterprise)

Windows 2003 x64 (Standard and Enterprise)

There is also a version of the EUM Agent that works with Novell NetWare. This is explained further in "NetWareEUM" on page 16.

During the installation, the configuration file scua.ini is installed into the c:\Surfcontrol User Agent folder on each domain controller. This file contains connection information about your Web Filter server(s) and identifies ignored users, which are specified during the installation. Additional domain controllers and/or ignored users can also be added to your EUM Agent configuration at a later date. For further details about installing the EUM Agent and post configuration tasks, refer to the following sections:

"Installing the EUM Agent on your domain controllers" on page 53

"Making changes to the EUM Agent configuration" on page 55

EUM on Windows 2000 and 2003 domain controllers

The EUM agent is installed on to Windows 2000 and 2003 domain controllers as a driver file called ScSubAuth.dll. If you are installing EUM on a Windows 2003 x64 operating system, the driver file ScSubAuth_AMD64.dll is loaded on to the domain controller during installation. When EUM is installed on to a Windows 2000 or 2003 server, Web Filter uses Microsoft’s Sub-Authentication to resolve user names.

EUM on Windows NT domain controllers

Web Filter installs the EUM User Agent (UA) on to Windows NT domain controllers as a service (SurfControl User Agent service; ScUserAgent.exe). During EUM installation, Web Filter configures NT domain controllers to record Successful Logons to the security log (event 528). If you make changes to this audit policy and disable event 528 logs (Successful Logon), EUM will not work correctly.

Confirm that event 528 logs are enabled by performing the following:

1From the Web Filter server, select User Manager for Domains from the Programs > Administrative Tools menu.

14 Starter Guide

SurfControl Web Filter for ISA v5.5

Page 18 Page 20
Image 19
Page 18 Page 20
Contents SurfControl Web Filter Trademarks SurfControl Web Filter Table of Contents Appendix Chapter ISA Server Microsoft ISA Server EditionHOW WEB Filter and ISA Server Interact Hardware Requirements System RequirementsGeneral System Requirements SQL Server Licensing System Requirements Installation Decisions Database Options User Name ResolutionIntroduction Network ConsiderationsDeployment Recommendations Network ConsiderationsDMZ Recommendations Network Considerations Web Filter communication ports Firewall Port ConfigurationISA Server ISA Server AuthenticationISA Server 2004/2006 EUM User Name ResolutionEUM on Windows NT domain controllers Methods of Installing EUMEUM Agent on Domain Controllers EUM on Windows 2000 and 2003 domain controllersBefore installation Ignoring Users in NetWare EUM NetwareeumLogging Levels Login Agent Location EUM Login AgentInstalling the Login Agent on NT Domains Installing the Login Agent on Windows 2000Below is a copy of the supplied .ini file EumLogin.ini fileEumLogin.ini file sections How to configure the fileAdd an Exception to the Windows Firewall Configuring a logon and logoff scriptDatabase Platforms Database ConsiderationsSQL Server Express SQL Server minimum requirements on Web Filter server SQL ServerSQL Authentication Database AuthenticationReasons to Install SQL Server on a Dedicated Server Windows AuthenticationInternet Threat Database Improvement Program Other ConsiderationsInternet Threat Database Categorization OptionsMail Notifications Remote Administration ClientPrivacy Edition Considerations Remote Administration Client minimum requirementsInstalling Web Filter NetWare client on to the Web Filter server Installation ProcessInstalling SQL Server Express Optional Select I accept the terms of the license agreement Installing Surfcontrol WEB FilterInstalling SurfControl Web Filter Select SurfControl Web Filter Installing SurfControl Web Filter Installing SurfControl Web Filter Changes to the Server Configuring WEB Filter Configuring Web Filter Configuring Web Filter Configuring Web Filter Configuring Web Filter Configuring Web Filter Automatic Database Management screen is displayed Internet Threat Database Update screen is displayedThreat Database Configuring Web Filter Click Add to list Enterprise User Monitoring recommended NetBIOS Configuring Web Filter Configuring Web Filter Installing Service Pack Installing Service Pack Installing Service Pack Further Configuration Network Dependent Post Installation TasksALL Installations Firewall Policy Rules for ISA Server 2004Installing the EUM Agent on Your Domain Controllers User Name Resolution Select Domain Controllers screen is displayed Making changes to the EUM Agent configurationUser Name Resolution Installing Netwareeum Installing the EUM Login Agent on Your NetworkIgnored users in NetWare EUM Automatically loading the NetWare EUMUnloading the NetWare EUM Add Web Filter Servers to NetWare EUMInstall Surfcontrol Report Central Installing the Remote Administration Client Select I accept the terms of the license agreement Select Remote Administration Installing the Remote Administration Client InstallShield Wizard Complete screen is displayed Remote Administration Client and Windows VistaAllow VCA Spider Functionality Allow Internet Threat Database UpdatesConfigure IE and the VCA Firewall Policy RulesFrom the Primary Connection Information screen, click New Allow the Remote Administration Client AccessConfigure a Firewall Policy Rule for the VCA From Access Rule Destinations, click AddSRC Allow Remote Access to Surfcontrol Report CentralEnter 8888 in the Port Range From field Click Apply in the Firewall Policy window Appendix Contact Technical Support Location Contact information Sales and Feedback
Top Page Image Contents