Cisco Cisco Web Security Appliance S190 사용자 가이드
Cisco IronPort AsyncOS 7.1 for Web User Guide
OL-23207-01
Chapter 7 Identities
Configuring Identities in Other Policy Groups
Figure 7-5
Multiple Identities in a Policy Group
Note
If an Identity group becomes disabled, then that Identity group is removed (not
disabled) from any non-Identity policy group that used it. If the Identity group
becomes enabled again, the non-Identity policy groups that previously used the
Identity do not automatically include the enabled Identity. Identity groups become
disabled due to a deleted authentication realm or sequence.
disabled) from any non-Identity policy group that used it. If the Identity group
becomes enabled again, the non-Identity policy groups that previously used the
Identity do not automatically include the enabled Identity. Identity groups become
disabled due to a deleted authentication realm or sequence.
To configure Identity group information in a policy group:
Step 1
Create a new policy group or edit the membership of an existing policy group for
Access, Decryption, Routing, Data Security, or External DLP Policy.
Access, Decryption, Routing, Data Security, or External DLP Policy.
Step 2
Scroll down to the Identities and Users section.
This Identity uses an authentication sequence and this policy group
applies to one realm in the sequence.
applies to one realm in the sequence.
All authenticated users in this Identity are authorized for this policy
group.
group.
The specified user groups in this Identity are authorized for this
policy group.
policy group.