A
PPENDIX
A: A
UTHENTICATION
O
PERATIONS
A
CTIVE
D
IRECTORY
A
GENT
212
M86 S
ECURITY
U
SER
G
UIDE
Windows server requirements
• Windows 2000 or Windows 2003 server running on a 32-
bit platform
• Latest Microsoft patches/service packs applied
• At least 512 MB RAM
• 100 MB disk space
• Special domain user account for the service with permis-
sions to read AD Agent event logs
Work flow in a Windows environment
1. AD Agent is installed in either a domain controller or on a
separate Windows server that can talk to the domain
controller via Windows APIs.
2. End users log on/off the network, and the event is logged
in the event viewer.
3. AD Agent queries the event log or probes workstations to
obtain log on/log off event information (login name,
domain name, IP address of machine).
4. AD Agent sends information with the event indicator to
the Web Filter Authentication Module.
5. Web Filter assigns or removes a profile based on the
user information and event indicator.