I've switched over to using Smoothwall SSL authentication, which is working well.
However, I have a certificate mismatch problem: when the SSL login page opens, it's pointed to the IP address of the Smoothwall server. However, the certificate is setup for the FQDN, so I get a mismatch warning. I want to use group policy to deploy the certificate to all domain machines but need to resolve this first. Any ideas?
I had a similar problem last week and the guys at Smoothwall Support helped me out. Basically changing the file /modules/auth/httpd/global-cgi-bin/ssllogin/login.cgi
will allow you to specify the FQDN rather than the IP address of the Smoothwall box.
Give the guys in support a call and they can tell you the exact lines of code to change and then you are still supported.
Thank you so much, Mike, that gave me the clue I needed. I'll call support.