Cisco Cisco Web Security Appliance S360
62
I R O N P O R T A S Y N C O S 6 . 5 F O R W E B R E L E A S E N O T E S - B E T A
Specifying port 8080 is required to access the administration interface
To access the Web Security appliance management interface, you must connect using the
appliance IP address and port number,
appliance IP address and port number,
http://192.168.42.42:8080
. Failing to specify a
port number when accessing the web interface results in a default port 80, Proxy Unlicensed
error page.
error page.
Load config functionality is inconsistent
Functionality on the System Administration tab > Configuration File page that allows you to
save an appliance configuration file (
save an appliance configuration file (
saveconfig
), or load a complete or partial
configuration (
loadconfig
) might fail to commit a particular change in settings. For
example, if you initially configure root DNS servers and then configure an authoritative DNS
server, reloading the initial configuration does not configure root DNS. [Defect ID: 29133]
server, reloading the initial configuration does not configure root DNS. [Defect ID: 29133]
NTLM authentication settings might not save correctly
When NTLM Basic authentication is configured and then disabled in a web access policy
group, settings are saved and you do not have to repeat the setup if you re-enable. Currently,
the appliance fails to save the authentication scheme and the setting defaults to “Use
NTLMSSP.” [Defect ID: 30255]
group, settings are saved and you do not have to repeat the setup if you re-enable. Currently,
the appliance fails to save the authentication scheme and the setting defaults to “Use
NTLMSSP.” [Defect ID: 30255]
Issue with manual updates and WCCP
Manual updates fail to download when the appliance is configured as a WCCP transparent
proxy with IP spoofing enabled. The manual update succeeds when IP spoofing is disabled.
[Defect ID: 32114]
proxy with IP spoofing enabled. The manual update succeeds when IP spoofing is disabled.
[Defect ID: 32114]
Changing NTLM non-admin user credentials requires AD server configuration
When changing the non-admin user credentials for the Active Directory server on the
appliance, the credentials used to join the Active Directory domain must also be configured
on the Active Directory server. The new credentials must have at least the following
permissions on the “Computers” container in the “Active Directory Users and Computers”
MMC applet: Create Computer Objects, and Delete Computer Objects. [Defect ID: 29868]
appliance, the credentials used to join the Active Directory domain must also be configured
on the Active Directory server. The new credentials must have at least the following
permissions on the “Computers” container in the “Active Directory Users and Computers”
MMC applet: Create Computer Objects, and Delete Computer Objects. [Defect ID: 29868]
Response message for manual updates might be inconsistent
The result code for manually updated components is always “
Success — Component was
successfully updated.
” In some instances, update status and descriptive messaging
might not reflect actual activity. [Defect IDs: 25069, 28629, 31966]
Partial messaging for denied HTTP CONNECT requests
Some browsers truncate HTTP data that is sent in response to a CONNECT request. This
means that if the Web Security appliance denies a CONNECT request, the “
means that if the Web Security appliance denies a CONNECT request, the “
page cannot be
displayed: Access Denied
” error message might be incomplete. [Defect ID: 37384,
26979, 23483, 23480]