Cisco Cisco Web Security Appliance S690 사용자 가이드
Chapter 7 Identities
Evaluating Identity Group Membership
7-8
Cisco IronPort AsyncOS 7.1 for Web User Guide
OL-23207-01
summarizes the previous information.
Table 7-1
Matching HTTPS and FTP over HTTP Requests to Identities
Surrogate
Types
Types
Explicit Requests
Transparent Requests
No Surrogate
HTTPS and FTP over HTTP
requests are matched like
HTTP requests.
requests are matched like
HTTP requests.
N/A
IP-based
HTTPS and FTP over HTTP
requests are matched like
HTTP requests.
requests are matched like
HTTP requests.
FTP over HTTP requests are
matched like HTTP requests.
matched like HTTP requests.
HTTPS requests are matched
like HTTP requests under any
of the following conditions:
like HTTP requests under any
of the following conditions:
•
A previous HTTP request
was authenticated using an
identity with an IP-based
surrogate.
was authenticated using an
identity with an IP-based
surrogate.
•
A previous HTTP request
was not authenticated, but
the HTTPS Proxy is
configured to decrypt the
first HTTPS request.
was not authenticated, but
the HTTPS Proxy is
configured to decrypt the
first HTTPS request.
Otherwise, if a previous HTTP
request was not authenticated
and the HTTPS Proxy is
configured to deny the request,
the HTTPS request fails.
request was not authenticated
and the HTTPS Proxy is
configured to deny the request,
the HTTPS request fails.
Cookie-based The client is not prompted for
authentication.
Note: When credential
encryption is disabled, no
surrogates are used, and
HTTPS requests are matched
like HTTP requests.
encryption is disabled, no
surrogates are used, and
HTTPS requests are matched
like HTTP requests.
The client is not prompted for
authentication.
authentication.