Getting Started Guide
Websense Web Security Gateway Anywhere v7.5


When one of the NTLM, LDAP, or Radius authentication methods is enabled, Content Gateway performs user authentication for requests that are explicitly or transparently routed to Content Gateway.
Transparent proxy authentication settings are configured on the Configure > Security > Access Control > Transparent Proxy Authentication tab.
*
Redirect Hostname (optional) — specifies an alternate hostname for the proxy.
By default, authenticating clients are redirected to the hostname of the Content Gateway machine. If clients aren't able to resolve that hostname via DNS, or if an alternate DNS name for the proxy is defined, that hostname can be specified in the Redirect Hostname field.
*
Authentication Mode — specifies the authentication mode. Content Gateway must be set to one of the following authentication modes:
*
In IP mode (the default), the client IP address is associated with a user name when the session is authenticated. Requests made from that IP address are not authenticated again until the Session TTL expires (time-to-live; default = 15 minutes). Requests made from that IP address within the time-to-live are considered to be made by the user associated with that IP address.
*
Cookie mode is used to uniquely identify users who share a single IP address, such as, for example, environments in which proxy-chaining is used or where network address translation (NAT) occurs.
*
Session TTL In either authentication mode, client authentication is valid for the duration of the time specified in Session TTL (default = 15 minutes). The supported range of values is 5-65535 minutes.
Click Apply to save your changes and click Restart on Configure > My Proxy > Basic > General to restart the proxy.