Smoothwall Filter (On Premise)

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Roadwarriors Security

    On the Network -> VPN -> SSL roadwarriors page new groups are enabled by default. I feel all groups should be disabled unless specifically enabled. Thanks.

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  2. Please fix the DoS hack for the login pages

    There is a simple DoS flaw that needs to be fixed. If a client has a program that sends many requests to the internet and they aren't authenticated then it overloads and kills the login pages for everyone. The same problem could happen by simply holding F5 refresh on the login page to spam the page with requests, this is an huge problem, and a security flaw that should have been fixed long ago by restricting the number of requests the auth pages respond to for any given IP or client.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  3. SSL VPN Certificate

    Can you update the VPN subsystem so that the certificate is generated with SHA256 (or better) instaead of md5, as newer versions of OpenVPN clients don't support md5 hash algorithms.

    18 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  4. Allow temporary BYOD Ban

    Can we have the ability to temporarily ban access through BYOD authentication whilst still allowing access through other methods, so we can temporarily block students who install bypass software on their phones \ tablets (or if we can temporarily block a device if it is recorded as matching certain firewall rules too many times).

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  5. IDex Agent exclude specific usernames

    Some desktop software uses it's own domain user account to authenticate and communicate with servers. This can cause that user to be logged-in on that workstation rather than the real user.

    Option to configure a list of usernames that IDex should ignore if seen by the Agent.

    Workaround: Change service usernames to include a $ symbol at the end and they will be ignored by IDex Agent.

    57 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    12 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
    under review  ·  Chris Humby responded

    We’re planning a small bug-fix update to IDex Agent soon.

    If there’s time I’d like to include this feature request too. For now this would likely be an additional configuration field where a list of usernames to exclude can be specified.

    Would this fulfil your requirements? Please add your comments to the discussion on uservoice.

  6. Guest Portal

    Add a guest portal that allows us to authenticate external users by registering for an account, that then can be reported on by name rather than just MAC address. Need for liability coverage and identification.

    14 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  7. Group Mapping to AD OUs

    Mapping users to Smoothwall groups from Organisational Units in Active Directory would be more useful than the current: by AD security group.

    18 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  8. Administrators of Smoothwall should be authentiated via Active Directory/RADIUS (i.e. not local users)

    Currently administrators of Smoothwall are local users. I'd like to be able to integrate the administrators to Active Directory or RADIUS..... i.e. no local users. The same could be said for Portal Users. I don't want to have to administer a whole host of local users and passwords.

    174 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    under review  ·  6 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  9. Smoothwall SAML Integration

    Smoothwall customers are increasingly using cloud based services and federating with external user repositories, such as Azure AD/Office 365.

    Most of these cloud based directories allow integarion with SAML.  Please considering implementing SAML integarion with Smoothwall

    40 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  10. Have a clear cache button for the Authentication Service

    Have a button to clear the Authentication cache in the case of Authentication issues instead of enabling / disabling to clear

    12 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  11. Chromebook connect splash page detection

    When using Chromebook Connect for off-site devices on public networks that require a splash page to authenticate, the connect client does not allow the end user to log into the network using the splash page as they both require authentication to allow the other one to authenticate.

    It would be great if Chromebook connect had splash page detection or even a fail open option similar to the connect client for Windows.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  12. Search by Username option in Authentication>UserActivity

    It would be nice if there was a search option feature on the Authentication>UserActivity screen to search for a specific user name to force a user log off. Currently, the logs are too large to "catch" an entry.

    12 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  13. needs a better search to kick users off user activity page

    currently we have 97 pages of 20, if we ask all to load it takes ages and IE thinks its crashed

    5 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  14. IDex Agent installed with MS Exchange logs unwanted remote login events

    When IDex Agent is installed on a MS Windows server that also has MS Exchange server installed it will log all IPs logging into exchange including remote access IP addresses.

    This causes excessive unwanted entries in the user activity log on Smoothwall.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  15. IDex SSO support for Smoothwall Portal access

    Ability to access the Smoothwall portal with SSO using the username provided by IDex Client or Agent.

    14 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  16. Test User account

    I would like to see a feature added to Smoothwall that LightSpeed has been providing for several years. The feature would provide the ability to test out a new user (local user) directly from the filter itself. This way, if we are creating a new user remotely, the account can be tested without having to be onsite using a separate device.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  17. IDex Client - Identification only mode

    Allow IDex Client to work in an Identification only mode so it provides user and group information to Smoothwall so it can be associate to the Client IP but does require it to be used as a proxy service.

    Web traffic could be then filtered using any transparent / non-transparent core auth policy.

    18 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  18. IDex Agent replicate all groups on first install

    IDex Agent by default replicates AD group overnight, however on new install it would be useful if it did this once automatically to allow group mapping.

    Current workaround is to use manual command; https://kb.smoothwall.net/Content/authentication/idexdirectory-synchronize.htm

    20 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  19. Directories to be grouped

    Would it be possible to have the SERVICES > AUTHENITCATION > DIRECTORIES mappings grouped together link in the GUARDIAN policies page - also it would be great to be able to comment on these groups.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  20. Force Google sign in on SSL login page

    The SSL login page is enabled for Google sign in but users are still able to authenticate using OD or AD credentials. We would like to see the option to customise the login page so that users are asked for OD/AD login or Google login, not both.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1
  • Don't see your idea?

Feedback and Knowledge Base