Руководство Пользователя для Cisco Cisco Content Security Management Appliance M160
9-11
AsyncOS 8.1 for Cisco Content Security Management User Guide
Chapter 9 Managing Web Security Appliances
•
Change the relevant setting for the Configuration Master. See
.
•
Enable or disable the feature on the Web Security Appliance. Some changes may impact multiple
features. See the information about the relevant feature in the Cisco IronPort AsyncOS for Web
Security User Guide.
features. See the information about the relevant feature in the Cisco IronPort AsyncOS for Web
Security User Guide.
Enabling Features to Publish
Enable the features for which you want to publish settings using a Configuration Master.
Note
Enabling a feature for a Configuration Master does not enable the feature on the Web Security
appliances.
appliances.
Features enabled for each Configuration Master are summarized on the Security Services Display page.
“N/A” alongside a feature indicates that the feature is not available in that Configuration Master version.
“N/A” alongside a feature indicates that the feature is not available in that Configuration Master version.
To enable features to publish:
Procedure
Step 1
Determine which features must be enabled and disabled. See
.
Step 2
On the Security Management appliance, choose Web > Utilities > Security Services Display.
Step 3
Click Edit Settings.
The Edit Security Services Display page lists the features that appear in each Configuration Master.
Note
Web Proxy is not listed as a feature, because it is assumed that the Web Proxy is enabled in order
to execute any of the managed policy types on the Web Security appliances. If the Web Proxy is
disabled, any policies published to the Web Security appliances will be ignored.
to execute any of the managed policy types on the Web Security appliances. If the Web Proxy is
disabled, any policies published to the Web Security appliances will be ignored.
Step 4
(Optional) Hide Configuration Masters that you will not use. To avoid unintended effects, see the Note
in
in
Step 5
For each Configuration Master that you will use, select or uncheck the Yes check box for each feature
to enable.
to enable.
Special notes for certain features (available options vary by Configuration Master version):
•
Transparent Mode. If you use Forward mode, the proxy bypass feature will not be available.
•
HTTPS Proxy. HTTPS proxy must be enabled in order to configure decryption policies.
•
Upstream Proxy Groups. Upstream proxy groups must be available on your Web Security appliances
if you want to use routing policies.
if you want to use routing policies.
Step 6
Make changes for each Configuration Master that you will use.
Step 7
Click Submit. The GUI displays specific warning messages if the changes you made to the security
services settings will affect policies configured on your Web Security appliances. If you are sure that
you want to submit your changes, click Continue.
services settings will affect policies configured on your Web Security appliances. If you are sure that
you want to submit your changes, click Continue.
Step 8
On the Security Services Display page, confirm that Yes appears alongside each option that you
selected.
selected.