Cisco Cisco Web Security Appliance S190 Guía Del Usuario
B-6
AsyncOS 9.2 for Cisco Web Security Appliances User Guide
Appendix B Command Line Interface
Web Security Appliance CLI Commands
Related Topics
•
Web Security Appliance CLI Commands, page 27-6
.
Web Security Appliance CLI Commands
The Web Security Appliance CLI supports a set of proxy and UNIX commands to access, upgrade, and
administer the system.
administer the system.
Note
Not all CLI commands are applicable/available in all operating modes (Standard Cloud Web Security
Connector, and Hybrid Web Security).
Connector, and Hybrid Web Security).
Command
Description
advancedproxyconfig
Configure advanced Web Proxy configurations; subcommands are:
AUTHENTICATION
– Authentication configuration options:
•
When would you like to forward authorization request headers
to a parent proxy
to a parent proxy
•
Enter the Proxy Authorization Realm to be displayed in the end
user authentication dialog
user authentication dialog
•
Would you like to log the username that appears in the request
URI
URI
•
Should the Group Membership attribute be used for directory
lookups in the Web UI (when it is not used, empty groups and
groups with different membership attributes will be displayed)
lookups in the Web UI (when it is not used, empty groups and
groups with different membership attributes will be displayed)
•
Would you like to use advanced Active Directory connectivity
checks
checks
•
Would you like to allow case insensitive username matching in
policies
policies
•
Would you like to allow wild card matching with the character
* for LDAP group names
* for LDAP group names
•
Enter the charset used by the clients for basic authentication
[ISO-8859-1/UTF-8]
[ISO-8859-1/UTF-8]
•
Would you like to enable referrals for LDAP
•
Would you like to enable secure authentication
•
Enter the hostname to redirect clients for authentication
•
Enter the surrogate timeout for user credentials
•
Enter the surrogate timeout for machine credentials
•
Enter the surrogate timeout in the case traffic permitted due
to authentication service unavailability
to authentication service unavailability
•
Enter re-auth on request denied option [disabled /
embedlinkinblockpage]
embedlinkinblockpage]
•
Would you like to send Negotiate header along with NTLM header
for NTLMSSP authentication
for NTLMSSP authentication
•
Configure username and IP address masking in logs and reports