Cisco Cisco Web Security Appliance S690 User Guide
Chapter 1 Getting Started with the Web Security Appliance
What’s New in Version 7.0
1-6
Cisco IronPort AsyncOS 7.1 for Web User Guide
OL-23207-01
New Feature: HTTP Instant Messaging Controls
AsyncOS for Web 7.0 uses the AVC engine to apply control settings to some
instant messenger (IM) traffic that runs on top of HTTP. You can block or monitor
the IM traffic, and depending on the IM service, you can block particular activities
(also known as application behaviors) in an IM session. For example, you can
allow an IM session with a particular IM service provider, but block file transfers
within that session.
instant messenger (IM) traffic that runs on top of HTTP. You can block or monitor
the IM traffic, and depending on the IM service, you can block particular activities
(also known as application behaviors) in an IM session. For example, you can
allow an IM session with a particular IM service provider, but block file transfers
within that session.
You control IM traffic by configuring Instant Messenger application settings on
the Applications Visibility and Control page of Access Policies.
the Applications Visibility and Control page of Access Policies.
For more information, see
.
New Feature: SaaS Access Control
AsyncOS for Web 7.0 includes the SaaS Access Control feature which provides
IT administrators with seamless, secure controls necessary for managing access
to Software as a Service (SaaS) applications and enforcing security policies. SaaS
Access Control allows IT administrators to easily control authentication and
authorization for users who need to access SaaS applications.
IT administrators with seamless, secure controls necessary for managing access
to Software as a Service (SaaS) applications and enforcing security policies. SaaS
Access Control allows IT administrators to easily control authentication and
authorization for users who need to access SaaS applications.
When you enable Cisco SaaS Access Control, users log into the configured SaaS
applications using their network authentication user credentials. That means they
use the same user name and password for all SaaS applications as well as network
access. You can choose whether users are transparently signed in (single sign-on
functionality) or prompted to enter their authentication user name and password.
applications using their network authentication user credentials. That means they
use the same user name and password for all SaaS applications as well as network
access. You can choose whether users are transparently signed in (single sign-on
functionality) or prompted to enter their authentication user name and password.
The SaaS Access Control solution uses the Security Assertion Markup Language
(SAML) to authorize access to SaaS applications. It works with SaaS applications
that are compliant with SAML version 2.0.
(SAML) to authorize access to SaaS applications. It works with SaaS applications
that are compliant with SAML version 2.0.
To enable SaaS Access Control, you must configure settings on both the Web
Security appliance and the SaaS application. It is very important that the settings
you configure on the appliance and SaaS application match each other
appropriately.
Security appliance and the SaaS application. It is very important that the settings
you configure on the appliance and SaaS application match each other
appropriately.
For more information, see
.