Cisco Cisco Web Security Appliance S680
2
Release Notes for Cisco IronPort AsyncOS 7.5.0 for Web
What’s New in Cisco IronPort AsyncOS 7.5 for Web
What’s New in Cisco IronPort AsyncOS 7.5 for Web
describes the new features and enhancements that have been added in the Cisco IronPort
AsyncOS 7.5 for Web release. It references where you can find more details in the Cisco IronPort
AsyncOS for Web User Guide. You can view these chapters in the PDF or the online help. You might also
find it useful to review release notes from earlier releases.
AsyncOS for Web User Guide. You can view these chapters in the PDF or the online help. You might also
find it useful to review release notes from earlier releases.
Table 1
New Features for AsyncOS 7.5 for Web
Feature
Description
New Features
Adaptive
Scanning
Scanning
AsyncOS for Web 7.5 introduces the Adaptive Scanning feature to improve efficacy
by identifying high-risk content and automatically selecting the best combination
of available anti-malware services. Adaptive Scanning is a logic layer that
associates web reputation and the content type and decides based on the current
threat profile which anti-malware scanning engine will process the web request.
by identifying high-risk content and automatically selecting the best combination
of available anti-malware services. Adaptive Scanning is a logic layer that
associates web reputation and the content type and decides based on the current
threat profile which anti-malware scanning engine will process the web request.
Enabling Adaptive Scanning increases efficacy for filtering out malware, but causes
a slight decrease in appliance performance. To use Adaptive Scanning, you must
enable Web Reputation Filters.
a slight decrease in appliance performance. To use Adaptive Scanning, you must
enable Web Reputation Filters.
For more information, see the “Understanding Adaptive Scanning” section in the
“Configuring Security Services” chapter of the Cisco IronPort AsyncOS for Web
User Guide.
“Configuring Security Services” chapter of the Cisco IronPort AsyncOS for Web
User Guide.
Transparent User
Identification for
Active Directory
Identification for
Active Directory
In AsyncOS for Web 7.5, you can identify users by an authenticated user name
transparently when using Active Directory with an NTLM authentication realm.
Previously, you could only identify users transparently when using Novell
eDirectory with an LDAP authentication realm. When users are identified
transparently, they are not prompted to enter user credentials.
transparently when using Active Directory with an NTLM authentication realm.
Previously, you could only identify users transparently when using Novell
eDirectory with an LDAP authentication realm. When users are identified
transparently, they are not prompted to enter user credentials.
Active Directory does not record user login event information in a method that is
easily queried by other servers, such as the Web Security appliance. However,
Cisco offers the Cisco Active Directory Agent that queries the Active Directory
security event logs to maintain an IP address to user name mapping of users
authenticated with Active Directory. The Active Directory agent acts as a sort of
identity repository. You must install the Active Directory Agent on a machine on
the network that the appliance can communicate with.
easily queried by other servers, such as the Web Security appliance. However,
Cisco offers the Cisco Active Directory Agent that queries the Active Directory
security event logs to maintain an IP address to user name mapping of users
authenticated with Active Directory. The Active Directory agent acts as a sort of
identity repository. You must install the Active Directory Agent on a machine on
the network that the appliance can communicate with.
For more information, see the “Transparent User Identification with Active
Directory” section in the “Identities” chapter of the Cisco IronPort AsyncOS for
Web User Guide.
Directory” section in the “Identities” chapter of the Cisco IronPort AsyncOS for
Web User Guide.
[Defect ID: 54973]