Cisco Cisco Web Security Appliance S190 사용자 가이드
5-11
AsyncOS 9.1 for Cisco Web Security Appliances User Guide
Chapter 5 Acquire End-User Credentials
Authentication Realms
Authentication Realms
Authentication realms define the details required to contact the authentication servers and specify which
authentication scheme to use when communicating with clients. AsyncOS supports multiple
authentication realms. Realms can also be grouped into authentication sequences that allow users with
different authentication requirements to be managed through the same policies.
authentication scheme to use when communicating with clients. AsyncOS supports multiple
authentication realms. Realms can also be grouped into authentication sequences that allow users with
different authentication requirements to be managed through the same policies.
•
•
•
•
•
•
Related Topics
•
•
External Authentication
You can authenticate users through an external LDAP or RADIUS server.
Configuring External Authentication through an LDAP Server
Before You Begin
•
Create an LDAP authentication realm and configure it with one or more external authentication
queries.
queries.
Step 1
Enable external authentication on the appliance:
a.
Navigate to System Administration > Users.
b.
Click Enable in the External Authentication section.
c.
Configure the options:
Option
Description
Enable External Authentication
—
Authentication Type
Select LDAP.
External Authentication Cache Timeout
The number of seconds AsyncOS stores the external
authentication credentials before contacting the LDAP
server again to re-authenticate. Default is zero (0).
authentication credentials before contacting the LDAP
server again to re-authenticate. Default is zero (0).
LDAP External Authentication Query
A query configured with the LDAP realm.
Timeout to wait for valid response
from server.
from server.
The number of seconds AsyncOS waits for a response to
the query from the server.
the query from the server.
Group Mapping
For each group name in the directory, assign a role.