Cisco Cisco ACNS Software Version 5.5 Manual Técnico
them against those in an LDAP server. When the Content Engine authenticates a user through the LDAP
server, a record of that authentication is stored locally in the Content Engine RAM (authentication cache). As
long as the authentication entry is kept, subsequent attempts to access restricted Internet content by that user
do not require LDAP server lookups. The default is 480 minutes, the minimum is 30 minutes, and the
maximum is 1440 minutes (24 hours). This is the time interval between the user's last Internet access and the
removal of that user's entry from the authorization cache, forcing re−authentication with the LDAP server.
server, a record of that authentication is stored locally in the Content Engine RAM (authentication cache). As
long as the authentication entry is kept, subsequent attempts to access restricted Internet content by that user
do not require LDAP server lookups. The default is 480 minutes, the minimum is 30 minutes, and the
maximum is 1440 minutes (24 hours). This is the time interval between the user's last Internet access and the
removal of that user's entry from the authorization cache, forcing re−authentication with the LDAP server.
The Cache Engine supports LDAP authentication for both proxy mode and transparent (WCCP) mode access.
In proxy mode, the Cache Engine uses the client's userid as a key for the authentication database, while in
transparent mode, the Cache Engine uses the client's IP address as a key for the authentication database. The
Cache Engine uses simple (nonencrypted) authentication to communicate with the LDAP server.
In proxy mode, the Cache Engine uses the client's userid as a key for the authentication database, while in
transparent mode, the Cache Engine uses the client's IP address as a key for the authentication database. The
Cache Engine uses simple (nonencrypted) authentication to communicate with the LDAP server.
Prerequisites
Requirements
There are no specific requirements for this document.
Components Used
The information in this document is based on these software and hardware versions:
Cisco Content Engine 7325 running ACNS 5.0.1
•
Microsoft Windows 2000 Advance Server with Active Directory
•
The information in this document was created from the devices in a specific lab environment. All of the
devices used in this document started with a cleared (default) configuration. If your network is live, make sure
that you understand the potential impact of any command.
devices used in this document started with a cleared (default) configuration. If your network is live, make sure
that you understand the potential impact of any command.
Conventions
Refer to the Cisco Technical Tips Conventions for more information on document conventions.
Configure
In this section, you are presented with the information to configure the features described in this document.
Note: Use the Command Lookup Tool (registered customers only) to obtain more information on the
commands used in this section.
commands used in this section.
Configurations
Cisco Content Engine 7325 (Cisco ACNS software release 5.0.1)
hostname V5CE7325
!
!
http authentication cache timeout 5
http proxy incoming 80 8080
!
ip domain−name cisco.com
!
interface GigabitEthernet 1/0
ip address 10.48.67.23 255.255.254.0