I wish to implement a user based access rules in firewall. I am using 13k series firewall as a data center firewall.
Access from user workstation to server should be based on "user logon" information. (Source as a AD user and dst would be a server IP)
Based on my knowledge, I assume that this is simple by using LDAP integration. However, what I wish to know is the backend process that Firewall uses to identify the user logon information. Like, does the firewall checks the user id info along with IP address also using WMI interface ? If that is the case, for how long does it keeps the information of IP address with the user id.