Reviving this thread as this is the only one i can find on the matter, but i've been having this same issue, too.
At first, staff would log in to veyon Master with their own account, but i realised that students being monitored by Veyon were able to bypass the Student Web Filter on our Fortigate Firewall because the firewall saw the teachers logon session on the DC and it looks like the teacher has now logged on and is assigned the profile.
To bypass this, i have had to create a generic account for use with Veyon which is set as a student, so this retains the student webfilter, however i can see all the different entries from different devices on the firewall from this user.
@tobydox said in Students bypassing filtering:
the Veyon Server/Service on the client computers check the teacher's credentials by performing a temporary internal user logon with the teacher's username and password. However it does not initiate a real user sessions so I wonder why your firewall recognizes the teacher as being logged on
Are you able to expand on this ^^^? Because the veyon user logon event shows up in the DC's event logs (which are monitored by the firewall to assign user sessions) and there seems to be no difference in this logon to any other domain user logon. The workstations are only checked for logoff events, as these don't appear on the DC.
As far as the firewall is concerned, whenever a client computer is connected to, the logged on user has changed, as this is now the latest logon event seen on the DC for that device.
