Cisco Cisco Web Security Appliance S670 User Guide

The setting chosen here affects the available authentication settings for this 
Identity.

This section only appears when the Secure Mobility Solution is enabled. 
For more information, see 

In the Define Members by Subnet field, enter the addresses to which this Identity 
should apply.

You can enter IP addresses, CIDR blocks, and subnets. Separate multiple 
addresses with commas.

If you do not enter an address in this field, the Identity group applies to 
all IP addresses. For example, if you configure the Identity to require 
authentication, but do not define any other settings, then the Identity acts 
similarly to the Default Identity Policy with authentication required.

In the Define Members by Protocol section, choose to which protocols this 
Identity should apply:

All protocols. Applies to all protocols the Web Security appliance supports.

HTTP/HTTPS Only. Applies to all requests that use HTTP or HTTPS as the 
underlying protocol, including FTP over HTTP and any other protocol 
tunneled using HTTP CONNECT. 

Native FTP Only. Applies to native FTP requests only.

In the Define Members by Authentication section, choose whether or not this 
Identity requires authentication. You can choose one of the following options:

No Authentication. The user is identified primarily by IP address. Go to 

.

Require Authentication. The user is identified by the authentication 
credentials entered. Go to 

.

Identify Users Transparently through Novell eDirectory. The user is 
identified by the current IP address to user name mapping received from the 
Novell eDirectory server. Go to