Hi Community,
Totally new to the XG firewall....
So far I have managed to install our XG310 with firmware 17.5.0GA and configure STAS to authenticate our AD users and allow internet access based on their AD group membership.
This is all fine, and the reports show the usernames correctly against those authenticated.
My query is with regards to our infrastructure servers. If I create a firewall rule to allow dns traffic from our internal AD servers to the WAN for example, the traffic gets logged as "unidentified" in the reports. Since our servers have no users logged in to authenticate via STAS, how can I prevent the "unidentified" traffic showing up on the main console as it interferes with monitoring the main user activity. If I needed select servers to have internet access, I would need an admin account mapped to an AD group to show the internet traffic from the server login. But for specific server that may need to update from the internet without any user logged in, how can I avoid the "unidentified" traffic in the logs. I basically don't like having the traffic showing as unidentified when its a known server if this makes sense?
This thread was automatically locked due to age.
