10-01-2010, 07:45 PM
I just tried this, and while it works, it's very tedious because the user is prompted to authenticate and provide a reason for every blocked page; there is no persistence of authentication.
I also tried adding an exception rule to skip URL checking for specified users/groups, but got the same result. I tried logging in to the user portal, then retried a blocked site - same result.
Is this working as designed? It seems broken - if you have specified that a particular user should skip the URL checks, then it shouldn't be prompting for a password every time because it shouldn't be checking the URL.
UTM9 home license on a 3.0GHz Pentium D / 4GB / 80GB / Onboard Gbit and Intel Quad-port Gbit NICs