How to block internet access to computers that are not in my active directory network
Hi. I have a problem denying PC access outside my active directory. I have created a group in AD that is synchronized with the zyxel UGS 210 (I have verified that it detects the users that are within that group) and I only want that the users that are within that group can surf the internet, so that if A computer does not belong to that group of AD can not surf the internet. When I assign the policy with which I surf the internet to apply it to the AD group (from the user tab) the internet stops working. I don't know what part I may be doing wrong. Greetings and thank you.
All Replies
-
Hi @AFM92
Welcome to Zyxel Communty. ?
It’s not just only apply user group on security policy, you also need to enable web authentication on USG.
In this way, when user open a browser, the USG will redirect web authentication portal, user must log in to get Internet access.
Enable Web Authentication at “CONFIGURATION > Web Authentication > General”, and create a Web authentication policy
1 -
Thanks for your quick response @Zyxel_Cooldia. Is there a way to do it without enabling web authentication? So that only domain users can access the internet. If this is not possible, is there a way for zyxel to remember logged users? so that they don't have to be authenticating every time they enter each one on their computer and want to surf the internet.
0 -
Hi @AFM92
You can enlarge the lease time and Reauthentication time on ad-users object.
BTW, You can also achieve the same result via Windows GPO. It’s based on AD group policy, not rely on gateway side.
Lease Time and Reauth Time at “CONFIGURATION > Object > User/Group > ad-users”
How to Block Internet access via GPO
1
Categories
- All Categories
- 415 Beta Program
- 2.3K Nebula
- 141 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.6K Security
- 218 USG FLEX H Series
- 262 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1K Wireless
- 39 Wireless Ideas
- 6.3K Consumer Product
- 245 Service & License
- 382 News and Release
- 81 Security Advisories
- 27 Education Center
- 8 [Campaign] Zyxel Network Detective
- 3.1K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight