Kaspersky Lab Hosted Email & Web Security, 250-499u, 2Y KL7604XWTDS ユーザーズマニュアル
製品コード
KL7604XWTDS
K
A S P E R S K Y
H
O S T E D
S
E C U R I T Y
S
E R V I C E S
94
D
UPLICATE
U
SERS OR
IP
A
DDRESSES
The administrator should avoid duplicating Domain/Active Directory usernames or IP addresses across different Custom
Groups. If you do duplicate any of these parameters, then the first group found will determine web access policy for that
user.
Groups. If you do duplicate any of these parameters, then the first group found will determine web access policy for that
user.
A
UTHENTICATION
K
EY
M
ANAGEMENT
Kaspersky Hosted Security Authentication Keys are used in conjunction with an installation of a Connector. Connectors
identify end users by merging user details from Active Directory using LDAP or Windows Domain integration and the
applied Authentication Key for the Connector. Connectors enable users to connect to the Kaspersky Hosted Security
Web Services with either a static IP address (no authentication key required) or a dynamic IP address by using a
Company, Group, or User Authentication Key.
identify end users by merging user details from Active Directory using LDAP or Windows Domain integration and the
applied Authentication Key for the Connector. Connectors enable users to connect to the Kaspersky Hosted Security
Web Services with either a static IP address (no authentication key required) or a dynamic IP address by using a
Company, Group, or User Authentication Key.
Connectors can encrypt user information and the Kaspersky Hosted Security Web Services can apply specific user or
group policy information based on this information. Connectors pass end-user Web traffic requests through the
Kaspersky Hosted Security Web Services for filtering, scanning, and policy enforcement, before providing the cleansed
Web content back to the end-user. You can find more information about Connectors in the Connector Installation Guide.
group policy information based on this information. Connectors pass end-user Web traffic requests through the
Kaspersky Hosted Security Web Services for filtering, scanning, and policy enforcement, before providing the cleansed
Web content back to the end-user. You can find more information about Connectors in the Connector Installation Guide.
Authentication Keys can be created via Kaspersky Hosted Security under the Admin tab. You can create a Company,
Group, or User Authentication Key which will be used to identify and authenticate the user to the Kaspersky Hosted
Security Web Services. A User Authentication Key enables more detailed user behavior reporting and policy
management, but requires administrators to manage more keys.
Group, or User Authentication Key which will be used to identify and authenticate the user to the Kaspersky Hosted
Security Web Services. A User Authentication Key enables more detailed user behavior reporting and policy
management, but requires administrators to manage more keys.
Authentication Keys are also used with the Anywhere+ roaming solution.
C
ONNECTOR AND
A
UTHENTICATION
K
EY DEPLOYMENT SCENARIOS
Here are three examples of the most popular deployment scenarios for Connectors using Company, Group, and User
Authentication Keys.
Authentication Keys.
C
ASE
1:
C
OMPANY
A
UTHENTICATION
K
EY AND
A
CTIVE
D
IRECTORY
(
MOST
POPULAR SCENARIO
)
Scenario Setup
Two AD groups created in Kaspersky Hosted Security:
WinNT://…/Marketing
WinNT://…/Engineering
Company Authentication Key and Connector installed on Domain Controller.
Policy1 applied to Marketing and Policy2 applied to Engineering.