Cisco Cisco Web Security Appliance S170 사용자 가이드

The Caching submenu provides four options to set the advanced caching mode.

Table 6-4 describes the caching options for the Customized Mode option in the 

advancedproxyconfig

 CLI command.

Would you like to send 
Negotiate header along 
with NTLM header for 
NTLMSSP authentication:
1. Do not send Negotiate 
header
2. Send Negotiate header

1, 2

1

No

Choose whether or not to send the 
“Proxy-Authenticate: Negotiate” 
header when the Web Proxy uses 
NTLMSSP authentication.
You might want to send this header 
to maintain compatibility with 
older user agents. You might want 
to not send the header to allow 
.NET applications to work properly 
with NTLMSSP authentication.

Would you like to allow 
wild card matching with 
the character * for LDAP 
group names?

Yes, No
(Boolean)

Yes

Yes

Choose whether or not to match an 
asterisk as a wildcard in LDAP 
group filters.
When this option is disabled, using 
an asterisk (*) in the group filters for 
LDAP servers works as a literal 
string.

Table 6-4 advancedproxyconfig CLI Command—Caching Options

Would you like to allow 
objects with a heuristic 
expiration time to be 
served as not-modified If-
Modified-Since hits from 
cache?

Yes, No
(Boolean)

Yes

No

0 = favor freshness on IMS to objects 
with heuristic expiration time
1 = favor bandwidth conservation

Table 6-3 advancedproxyconfig CLI Command—Authentication Options (Continued)