Hi We are having a lot of issues with using the PAN Agent scraping the wrong user / ip information from our AD logs as we also have a mixture of local user logins and remote desktop RDP connections which change the user's login / ip address association which I'm sure you are all aware of. I'm aware that the UID Agent that is used for E-Directory LDAP has an XML API, but as we are using Active Directory, I'm using the PAN Agent instead. I was wondering if there is a similar XML API for the PAN Agent? If there isn't, why not? Is it on the road map for sometime soon? Is there some other way of clearing the wrong user / ip association from the PAN Agent? I've tried to use Captive Portal with NTLM but this only works if the user is _unknown_. Is there a way to force a CP connection when users use a web browser and to clear it when the browser is closed? Failing that, can the UID Agent be used with Active Directory (and hence the API) instead of the PAN Agent and if so, what would be the best practice configuration please? As the main selling point to use for the PAN was its user / app logging, the fact that the wrong users are being logged is disastrous for us. We would rather not have a user logged than the wrong one, as it makes the user's web browsing activity wrong with serious consequences to us from our HR department. Any help in these matters would be appreciated.
... View more