Censornet - internet filtering on your terms

Web filtering for Citrix that identifies usernames

Published in General information & Hosted Web Security on January 29, 2012 by Administrator

The reason for this blog article is that we receive a large number of enquiries regarding Citrix based networks and the requirement to provide web filtering with username identification.

Both our cloud based web filter and on-site proxy based filter work well in Citrix environments. The former, Hosted Web Security, uses a proprietary user authentication system (which hooks into Active Directory) and each Citrix session has an instance of the Cloud Link client running. Cloud Link takes care of user authentication allowing policies to be applied down to individual user level and for the person to be identified in reports (by their e-mail address).

The on-site proxy product, CensorNet Professional, identifies usernames with a different technique. It uses the Active Directory compatible "negotiate" authentication method, which allows for single sign on. Modern web browsers (IE6+, etc), when configured to use a proxy, will inject user authentication headers into the request to the proxy which contain information about the logged in username. There is no client software required and all you need to do is ensure the browsers are configured correctly within your Citrix sessions to point to the CensorNet proxy.

Hopefully that clears up the issue of user authentication/identification and Citrix environments.