Cisco Cisco Web Security Appliance S690 User Guide
20-19
Cisco IronPort AsyncOS 7.0 for Web User Guide
OL-23079-01
Chapter 20 Authentication
Appliance Behavior with Multiple Authentication Realms
•
Add a new realm by clicking Add Row.
•
Delete a realm by clicking the trash can icon.
•
Change the order of the realms by clicking the arrow icon in the Order column
for the realm.
for the realm.
Step 3
Submit and commit your changes.
Deleting Authentication Sequences
If you delete an authentication sequence, any Access Policy group that depends
on the deleted sequence becomes disabled.
on the deleted sequence becomes disabled.
To delete an authentication sequence:
Step 1
On the Network > Authentication page, click the trash can icon for the sequence
name.
name.
Step 2
Confirm that you want to delete the sequence by clicking Delete.
Step 3
Commit your changes.
Appliance Behavior with Multiple Authentication
Realms
Realms
You can configure the Web Security appliance to attempt authenticating clients
against multiple authentication servers, and against authentication servers with
different authentication protocols. When you configure the appliance to
authenticate against multiple authentication servers, it only requests the
credentials from the clients once. This is true even when you configure the
appliance to authenticate against different protocols.
against multiple authentication servers, and against authentication servers with
different authentication protocols. When you configure the appliance to
authenticate against multiple authentication servers, it only requests the
credentials from the clients once. This is true even when you configure the
appliance to authenticate against different protocols.
You might want to configure a web policy group to authenticate against different
realms if your organization acquires another organization that has its own
authentication server using the same or a different authentication protocol. That
way, you can create one Access Policy group for all users and assign to the policy
group an authentication sequence that contains a realm for each authentication
server.
realms if your organization acquires another organization that has its own
authentication server using the same or a different authentication protocol. That
way, you can create one Access Policy group for all users and assign to the policy
group an authentication sequence that contains a realm for each authentication
server.