Руководство Пользователя для Cisco Cisco Web Security Appliance S170
20-10
Cisco IronPort AsyncOS 7.7.5 for Web User Guide
Chapter 20 Authentication
Authentication Realms
Authentication Realms
An authentication realm is a set of authentication servers (or a single server) supporting a single
authentication protocol with a particular configuration.
authentication protocol with a particular configuration.
You can perform any of the following tasks when configuring authentication:
•
Include up to three authentication servers in a realm.
•
Create zero or more LDAP realms.
•
Create between zero and 10 NTLM realms.
•
Include an authentication server in multiple realms.
•
Include one or more realms in an authentication sequence.
•
Include realms of different protocols in a single authentication sequence, but only one NTLM realm
can use NTLMSSP in the sequence.
can use NTLMSSP in the sequence.
•
Assign a realm or a sequence to an Identity group.
You create, edit, and delete authentication realms on the Network > Authentication page under the
Authentication Realms section.
Authentication Realms section.
When you create two or more realms, you can order them in an authentication sequence. For more
information, see
information, see
.
Adding an LDAP Authentication Realm
Step 1
Navigate to Network > Authentication.
Step 2
Click Add Realm.
Step 3
Name the authentication realm.
All sequence and realm names must be unique and only contain alphanumeric characters or the space
character. Also, if the Web Security appliance is managed by a Security Management appliance, ensure
that same-named authentication realms on different Web Security appliances have identical properties
defined on each appliance.
character. Also, if the Web Security appliance is managed by a Security Management appliance, ensure
that same-named authentication realms on different Web Security appliances have identical properties
defined on each appliance.
Step 4
Select LDAP in the Authentication Protocol and Scheme(s) field.