Authentication is the act of confirming the identity of a user. By using authentication in the Web Security
appliance, you can control access to the Web for each user or a group of users. This allows you to enforce
the organization’s policies and comply with regulations. When you enable authentication, the Web
Security appliance authenticates clients on the network before allowing them to connect to a destination
server.

The Web Security appliance supports the following authentication protocols:

•

Lightweight Directory Access Protocol (LDAP). The appliance supports standard LDAP server
authentication and secure LDAP authentication. You can use a Basic authentication scheme. For
more information about LDAP configuration options, see

LDAP Authentication, page 20-28

•

NT Lan Manager (NTLM). The appliance supports NTLM to enable authentication between the
appliance and a Microsoft Windows domain controller. You can use either NTLMSSP or Basic
authentication schemes. For more information about NTLM configuration options, see

NTLM

Authentication, page 20-31

To enable authentication, you must create at least one authentication realm. An authentication realm is
a set of authentication servers (or a single server) supporting a single authentication protocol with a
particular configuration. For more information about authentication realms, see

Authentication Realms,

page 20-10