Cisco Cisco Web Security Appliance S170 사용자 가이드

When configured to pass through HTTPS traffic without decrypting, AsyncOS cannot assign an identity 
to HTTPS transactions based on User Agent or Destination URL.

Navigate to the Web Security Manager > Identities page.

Click Add Identity.

Enter a unique name for the Identity group using alphanumeric characters (space characters are allowed). 

(Optional) Add a description.

In the Insert Above field, specify the desired location of the identity in the policies table .

When configuring multiple Identity groups, specify a logical order for each group. Carefully order your 
Identity groups to ensure that correct matching occurs. Position groups that do not require authentication 
above the first policy group that requires authentication. For more information about how authentication 
affects Identity groups, see 

Define at least one criterion for Identity membership.

If you define multiple criteria, the client request must meet all criteria to match the Identity.

Define Members by User Location

Local users, remote users, or both local and remote users.

Affects the available authentication settings for this 
Identity.

Option only appears when the Secure Mobility Solution 
is enabled.

Define Members by Subnet

IP addresses, CIDR blocks, and subnets to which this 
Identity applies.

Separate multiple addresses with commas.

If you do not enter an address in this field, the Identity 
group applies to all IP addresses. For example, if you 
configure the Identity to require authentication, but do 
not define any other settings, then the Identity acts 
similarly to the Default Identity Policy with 
authentication required.