Cisco Cisco Web Security Appliance S370 사용자 가이드

Enable credential encryption to transmit credentials over HTTPS in encrypted form. This increases 
security of the basic authentication process. 

The Web Security appliance uses its own certificate and private key by default to create an HTTPS 
connection with the client for the purposes of secure authentication. Most browsers will warn users, 
however, that this certificate is not valid. To prevent users from seeing the invalid certificate message, 
you can upload a valid certificate and key pair that your organization uses.

Configure the appliance to use IP surrogates.

(Optional) Obtain a certificate and unencrypted private key. The certificate and key configured here 
are also used by Access Control.

Choose Network > Authentication.

Click Edit Global Settings.

Check the Use Encrypted HTTPS Connection For Authentication check box in the Credential 
Encryption field.

(Optional) Edit the default port number (443) in the HTTPS Redirect Port field for client HTTP 
connections during authentication.

(Optional) Upload a certificate and key:

Expand the Advanced section.

Click Browse in the Certificate field and find the certificate file you wish to upload.

Click Browse in the Key field and find the private key file you wish to upload.

NTLMSSP

MyDomain\jsmith

Basic

jsmith

MyDomain\jsmith

If the user does not enter the Windows domain, the Web Proxy 
prepends the default Windows domain.