Cisco Cisco Web Security Appliance S170 사용자 가이드

21-11

Cisco IronPort AsyncOS 7.5.7 for Web User Guide

Chapter 21 Authentication

Working with Authentication Realms

Figure 21-2

Authentication Page — Authentication Realms

When you create two or more realms, you can order them in an authentication sequence. For more
information, see

Working with Authentication Sequences, page 21-12

Creating Authentication Realms

When you first create a realm, you choose the protocol type, either LDAP or NTLM. You can only create
on NTLM realm so therefore, once an NTLM realm is defined, the appliance only allows you to create
LDAP realms. After you enter the authentication settings, you can test that the parameters you entered
are valid before you submit your changes. For more information about testing the authentication settings,
see

Testing Authentication Settings, page 21-15

To create an authentication realm:

Step 1

On the Network > Authentication page, click Add Realm. The Add Realm page appears.

Step 2

Enter a name for the authentication realm in the Realm Name field.

Note

All sequence and realm names must be unique and only contain alphanumeric characters or the
space character. Also, if the Web Security appliance is managed by a Security Management
appliance, ensure that authentication realms on different Web Security appliances with the same
name have the exact same properties defined on each appliance.

Step 3

If no NTLM realm is defined, choose the authentication protocol and scheme in the Authentication
Protocol and Scheme(s) field.

Step 4

Enter the authentication settings as necessary, depending on the protocol type.

•

For details on LDAP settings, see

Table 21-12 on page 21-31

•

For details on NTLM settings, see

Table 21-15 on page 21-36

Step 5

You can test the parameters you entered by clicking Start Test in the Test Current Settings section.