Cisco Cisco Web Security Appliance S690 사용자 가이드
Chapter 20 Authentication
Authentication Overview
20-2
Cisco IronPort AsyncOS 7.0 for Web User Guide
OL-23079-01
policies and comply with regulations. When you enable authentication, the Web
Security appliance authenticates clients on the network before allowing them to
connect to a destination server.
Security appliance authenticates clients on the network before allowing them to
connect to a destination server.
The Web Security appliance supports the following authentication protocols:
•
Lightweight Directory Access Protocol (LDAP). The appliance supports
standard LDAP server authentication and secure LDAP authentication. You
can use a Basic authentication scheme. For more information about LDAP
configuration options, see
standard LDAP server authentication and secure LDAP authentication. You
can use a Basic authentication scheme. For more information about LDAP
configuration options, see
.
•
NT Lan Manager (NTLM). The appliance supports NTLM to enable
authentication between the appliance and a Microsoft Windows domain
controller. You can use either NTLMSSP or Basic authentication schemes.
For more information about NTLM configuration options, see
authentication between the appliance and a Microsoft Windows domain
controller. You can use either NTLMSSP or Basic authentication schemes.
For more information about NTLM configuration options, see
To enable authentication, you must create at least one authentication realm. An
authentication realm is a set of authentication servers (or a single server)
supporting a single authentication protocol with a particular configuration. For
more information about authentication realms, see
authentication realm is a set of authentication servers (or a single server)
supporting a single authentication protocol with a particular configuration. For
more information about authentication realms, see
.
When you create more than one realm, you can group the realms into an
authentication sequence. An authentication sequence is a group of authentication
realms listed in the order the Web Security appliance uses for authenticating
clients. For more information about authentication sequences, see
authentication sequence. An authentication sequence is a group of authentication
realms listed in the order the Web Security appliance uses for authenticating
clients. For more information about authentication sequences, see
You configure some authentication options at a global level, independent of any
realm. For more information, see
realm. For more information, see
By creating authentication realms and sequences, you can configure the Web
Security appliance to use one or more authentication servers for authenticating
clients on the network. For more information about how the appliance works when
it uses multiple authentication servers, see
Security appliance to use one or more authentication servers for authenticating
clients on the network. For more information about how the appliance works when
it uses multiple authentication servers, see
After creating an authentication realm and possibly a sequence, too, you can
create or edit Identities based on authentication realms or sequences. Note,
however, that if you delete an authentication realm or sequence, any Identity
group that depends on the deleted realm or sequence becomes disabled. For more
information about using authentication with Identities, see
create or edit Identities based on authentication realms or sequences. Note,
however, that if you delete an authentication realm or sequence, any Identity
group that depends on the deleted realm or sequence becomes disabled. For more
information about using authentication with Identities, see