Cisco Cisco Web Security Appliance S170 ユーザーガイド

Users may be blocked from the web due to authentication failure for the following reason:

Client limitations. Some client applications may not properly support authentication. You can 
bypass authentication for these clients by configuring Identities that do not require authorization and 
basing their criteria on the clients (and, optionally, on the URLs they need to access). 

Authentication service is unavailable. An authentication service might be unavailable due to 
network or server issues. You can choose to allow unauthenticated traffic in this circumstance. 

Invalid credentials. Some users may be unable to supply valid credentials for proper authentication 
(for example, visitors or users awaiting credentials). You can choose to grant these users limited 
access to the web. 

Bypassing the Web Proxy

This configuration applies only when an authentication service is unavailable. It will not bypass 
authentication permanently. For alternative options, see 

Create a custom URL category that contains 
the affected websites by configuring the 
Advanced properties.

Create an Identification Profile with 
these characteristics:

Placed above all identities that 
require authentication.

Includes the custom URL category.

Includes affected client applications.

Does not require authentication

Create a policy for the Identification Profile.