Using DC Agent for Transparent User Identification > How DC Agent identifies users
|
|
DC Agent detects domain controllers: At startup, and (by default) every 24 hours thereafter, DC Agent identifies available domains and domain controllers in the network and saves the information to its dc_config.txt file.
|
|
DC Agent obtains logon session information: DC Agent queries each domain controller for user logon sessions, obtaining the user and computer name.
|
|
DC Agent records user name/IP address pairs: For each logon session, DC Agent performs a DNS lookup to resolve the computer name to an IP address, and then stores the user name/IP address pair in its user map in local memory. It periodically writes a copy of the user map to XidDcAgent.bak.
|
|
DC Agent sends user information to Filtering Service: DC Agent provides user names and IP addresses to Filtering Service each time its user map is updated.
|
|
Filtering Service gets group information for logged-on users: Filtering Service queries User Service to get group information for users in its copy of the user map. User Service queries the directory service for this group information, and sends the information to Filtering Service.
|
|
Websense software applies policies to logged-on users: Filtering Service uses the information from DC Agent and User Service to ensure that the correct policies are applied to directory clients (users, groups, and OUs).
|
Using DC Agent for Transparent User Identification > How DC Agent identifies users
|