![]() |
![]() |
![]() |
![]() |
Configuring a Cisco Security Appliance > User-based filtering for Cisco integration
|
If http, https or ftp authentication is enabled on Cisco Security Appliance, Websense User Service must be installed in the same domain (Windows), or the same root context (LDAP) as authenticated users in order to get correct user information to the Websense Filtering Service component for accurate user-based filtering.
Cisco Secure ACS can provide user information for one domain only. To transparently identify users in multiple domains, use a Websense transparent identification agent. See the Websense Installation Guide for information about installing transparent identification agents.If user authentication is not enabled on Cisco Security Appliance, manual authentication or transparent identification agents can be used for user-based filtering. See the TRITON - Web Security Help for information about configuring manual authentication, or configuring transparent identification agents.If user authentication information is provided by Cisco Security Appliance, it can only be used for HTTP(S) and FTP filtering by default.
2. Stop Filtering Service (See Stopping and starting Websense services in the Installation Guide).
4. Open eimserver.ini.
5. Add the parameter "CacheWISPUsers=on" in the [WebsenseServer] section.
6. Restart Filtering Service (See Stopping and starting Websense services in the Installation Guide).If user authentication is provided by manual authentication or transparent identification agents, it can be used for both HTTP(S), FTP and internet protocol filtering.
![]() |
![]() |
![]() |
![]() |
Configuring a Cisco Security Appliance > User-based filtering for Cisco integration
|