Yes. If I've followed the various conversations about this correctly, people who are using Zentyal as a PDC have much more success with SSO than those who aren't.
Well... Here in my tests, doesn't work...
I install share folders, users and groups and proxy http.
Setting Zentyal as domain controller, create same users and groups...
I have created 2 groups:
level01
level02
And 2 users:
gilberto, that I put into level01 group
test, that I put into level02 group
After that, I create a rules in Proxy HTTP configuration, like that:
SSO - enabled
Proxy HTTP -> Filters -> freeaccess = this filter there's no rule to block any site.
Proxy HTTP -> Filters -> blockaccess = this filter block same sites, like facebook and others.
Proxy HTTP -> Access Rules -> Everytime -> Level01 -> FreeAccess Filter
Proxy HTTP -> Access Rules -> Everytime -> Level02 -> BlockAccess Filter
I also create a dns zone, called servidor, that point to Zentyal Server IP Address.
I put a Windows XP machine as domain member of Zentyal Server. I'm able to log into domain and see all folders that my users can see...
But, when I open a WebBrowser, such IE or Google Chrome, and set Proxy like servidor.home.lan, all webpages is block!
Doesn't matter if I logged with user gilberto or test... Even with users gilberto, that I suppose have a free access by the fiilter above...
Otherwise, when I disable SSO, I have a popup window ask me for password... But the filter above work perfect...
Is There something that I make wrong???
Thanks for any help...