Руководство Пользователя для Cisco Cisco Web Security Appliance S170
20-7
Cisco IronPort AsyncOS 7.0 for Web User Guide
OL-23079-01
Chapter 20 Authentication
Understanding How Authentication Works
applications can use the Windows login credentials for authentication and
users do not need to enter their credentials again. This is called “single
sign-on.”
users do not need to enter their credentials again. This is called “single
sign-on.”
For more information, see
.
describes the different authentication scenarios you can configure
between the Web Security appliance and the client and between the Web Security
appliance and the authentication server.
appliance and the authentication server.
Table 20-1
Web Security Appliance Authentication Scenarios
Client to Web Security
Appliance
Appliance
Web Security Appliance to
Authentication Server
Authentication Server
Authentication Server
Type
Type
Basic
LDAP
LDAP server
Basic
LDAP
Active Directory server
using LDAP
using LDAP
Basic
NTLM
Active Directory server
using NTLM
using NTLM
NTLMSSP
NTLM
Active Directory server
using NTLM
using NTLM
Web Proxy deployment also affects how authentication works in each of the
scenarios described in
scenarios described in
. For more information, see
.
Basic versus NTLMSSP Authentication Schemes
When you configure an Identity group to use authentication, you choose the
authentication scheme, either Basic or NTLMSSP. The authentication scheme
affects the user experience and the security of users’ passwords.
authentication scheme, either Basic or NTLMSSP. The authentication scheme
affects the user experience and the security of users’ passwords.