Integration with Active Directory
Im looking for documentation about integration pfsense with MS AD. It is possible to set firewall policies based on AD users but not on IP addresses of lan clients ? I would like to create rapports which user generate traffic and on which site.
I have dhcp on AD DC which gives clients random ip adresses. So it's not possible to set ip policies.
I'm looking similar solutions like in UTM devices (netasq, fortigate http://docs.fortinet.com/auth/fortiauthenticator-admin-10.pdf
http://www.fortinet.com/doc/FSSO_DS.pdf ) but on pfsense. It is possible to implement on pfsense ? How can I do it ?
My PFS version 2.0-RELEASE (i386)
Captive Portal + Active Directory ?
pfSense is not a content filter and web reporting system.
Squid can authenticate against AD, so you can get much of the functionality found in commercial UTMs by installing squid (proxy) + squidguard (filter) + lightsquid (reporting), but it won't be a tightly-integrated system. Personally, I don't think this functionality belongs on a router/firewall.