This article applies to organisations with a 'Hybrid' setup (both On-Premise Appliance and Cloud), as well as On-Premise only and Cloud only setups.
User Groups can be used in Web Proxy Authentication Policies to manage how Smoothwall authenticates users, and in Web Filter Policies to manage how filtering is applied.
You can use custom User Groups and the three built-in groups that can’t be deleted or renamed.
- In Cloud Filter, you can’t see these groups in Admin Panel > Smoothwall Groups, but they exist in the background.
- In On-Premise Appliance:
- View these groups in Services > Authentication > Groups.
- Check which Group a user was assigned to in Services > Authentication > User activity.
Default users
When Smoothwall authenticates a user who exists in the directory but doesn’t have a User Group mapping, it assigns them to the Default users group. Smoothwall also assigns users to this group if an alias has been used for the mapping instead of the User Principal Name.
Note
See users in this group on the User activity page.
Banned users
You can temporarily ban users by adding them to the Banned users group, then apply a Web Filter Policy to block web browsing. See Temporarily block web browsing for users.
Unauthenticated IPs
When a device doesn’t authenticate or the content is part of an Authentication Exception, Smoothwall assigns the user to the Unauthenticated IPs group.
Tip
You can change this to a different group by editing the Options for unauthenticated requests.