Cisco Cisco Web Security Appliance S160 User Guide
5-16
AsyncOS 9.2 for Cisco Web Security Appliances User Guide
Chapter 5 Acquire End-User Credentials
Authentication Realms
Step 8
Configure Network Security:
Step 9
(Optional) Click Start Test. This will test the settings you have entered, ensuring they are correct before
real users use them to authenticate.
real users use them to authenticate.
Step 10
Submit and commit your changes.
Creating an LDAP Authentication Realm
Before You Begin
•
Obtain the following information about LDAP in your organization:
–
LDAP version
–
Server addresses
–
LDAP ports
•
If the Web Security appliance is managed by a Security Management appliance, ensure that
same-named authentication realms on different Web Security appliances have identical properties
defined on each appliance.
same-named authentication realms on different Web Security appliances have identical properties
defined on each appliance.
Step 1
Choose Network > Authentication.
Step 2
Click Add Realm.
Step 3
Assign a unique name to the authentication realm using only alphanumeric and space characters.
Step 4
Select LDAP in the Authentication Protocol and Scheme(s) field.
Setting
Description
Enable Transparent
User Identification using
Active Directory agent
User Identification using
Active Directory agent
Enter both the server name for the machine where the primary Context
Directory agent is installed and the shared secret used to access it.
Directory agent is installed and the shared secret used to access it.
(Optional) Enter the server name for the machine where a backup Context
Directory agent is installed and its shared secret.
Directory agent is installed and its shared secret.
Setting
Description
Client Signing Required
Select this option if the Active Directory server is configured to require
client signing.
client signing.
With this option selected, AsyncOS uses Transport Layer Security when
communicating with the Active Directory server.
communicating with the Active Directory server.