Is there an easy way to prevent a thin client from loading browser sessions if it’s not registering with the UMS.? I’d like to prevent thin clients from being used remotely unless they are registered with the Igel Cloud Gateway. I’ve been working on a script for this, but I was wondering whether you might have any better ideas. So far, I have something like this (this is a messy draft based on what I’m actually writing):
My script to prevent IGEL OS from loading browser sessions if it’s not registering with the UMS?
function block_traffic {
iptables -I INPUT 1 -p tcp -d $OUR_STOREFRONT_SERVER -j DROP
iptables -I OUTPUT 1 -p tcp -d $OUR_STOREFRONT_SERVER -j DROP
iptables -I INPUT 1 -p udp -d $OUR_STOREFRONT_SERVER -j DROP
iptables -I OUTPUT 1 -p udp -d $OUR_STOREFRONT_SERVER -j DROP
}
function unblock_traffic {
iptables -D INPUT -p tcp -d $OUR_STOREFRONT_SERVER -j DROP
iptables -D OUTPUT -p tcp -d $OUR_STOREFRONT_SERVER -j DROP
iptables -D INPUT -p udp -d $OUR_STOREFRONT_SERVER -j DROP
iptables -D OUTPUT -p udp -d $OUR_STOREFRONT_SERVER -j DROP
}
block_traffic
until grep -q “checking for new settings after connecting UMS” <(journalctl); do
# Obviously more userfriendly than this…
DISPLAY=:0 xmessage “Please register with the Igel Cloud Gateway, or make sure that your thin client is connecting to the U.M.S.”
sleep 15
done
unblock_traffic
Looks like a pretty straight forward script! In general you could also remove the firefox session until an ICG connction is established.
I haven’t something ready but it goes bit in your direction:
VMware started if outside or inside
Or a similar setup but based on VPN, valid certificate and SCEP:
Scep/VPN
But I prefer your approach, that’s clean and 100% functional!! Simply great!
Continue reading and comment on the thread ‘How to prevent IGEL OS from loading browser sessions if it’s not registering with the UMS?’. Not a member? Join Here!
Learn more, search the IGEL Knowledge Base
Ask a question or comment on the above message thread?
Join or log in to the IGEL Community to ask us anything and meet other IGEL customers, partners, and EUC enthusiasts.Submit a question, or Join Today!