Cisco Cisco Web Security Appliance S170 사용자 가이드

Virtual Appliance 
enhancements 

Virtual appliances can now be deployed on a KVM hypervisor. 

Thin provisioning for disk storage is supported. 

You can configure the Cisco appliance license and configuration files 
to load automatically upon initial startup. 

For details, see the Cisco Content Security Virtual Appliance Installation 
Guide, available from 

High Availability 

This release provides a built-in high availability option suitable for 
deployments in which the appliance runs in explicit mode with a proxy. 

For more information, see the “Connect, Install, and Configure” chapterin 
the User Guide.

2048-bit certificates

The key length for SSL certificates generated or processed by the appliance 
is now 2048 bits. 

LDAP authentication

LDAP protocol is now supported for authenticating administrative users of 
the appliance. 

Volume and Time Quotas You can apply time and volume quotas to access policies and decryption 

policies. Quotas allow individual users to continue accessing an Internet 
resource (or a class of Internet resources) until they exhaust the data volume 
or time limit imposed.

Web Security Virtual 
Appliance enhancements

Support for VMWare ESXi 5.5 

Support for thin provisioning in ESXi 

Now, after the virtual appliance license expires, there is a six-month 
grace period during which the appliance continues to process web 
transactions, but without security services 

You can configure the appliance to send you alerts when the license 
expiration date approaches. 

Evaluation feature keys can now be deployed on virtual appliances 

Authentication by 
machine ID 

For deployments in Connector mode with Active Directory, this release 
introduces the option to authorize access based on device ID.