Cisco Cisco Web Security Appliance S670 Mode D'Emploi
7-35
Cisco IronPort AsyncOS 7.0 for Web User Guide
OL-23079-01
Chapter 7 Identities
Example Identity Policies Tables
When you configure the appliance in this way, any client that sends a request for
a URL must exist in either realm in the sequence (RealmA or RealmB) in order to
pass authentication at the Identity level. Once an Identity has been assigned to the
client request, the Web Proxy can compare the client request against the other
policy types and determine which policy group, such as an Access Policy group,
to match and then apply those control settings. In this example, the Web Proxy
matches users in RealmA with the policy group configured in step
a URL must exist in either realm in the sequence (RealmA or RealmB) in order to
pass authentication at the Identity level. Once an Identity has been assigned to the
client request, the Web Proxy can compare the client request against the other
policy types and determine which policy group, such as an Access Policy group,
to match and then apply those control settings. In this example, the Web Proxy
matches users in RealmA with the policy group configured in step
, and matches
users in RealmB with the policy group configured in step
.