Documentation | Support

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Firewall Redirect: Forwarding Traffic to the Forcepoint Cloud Service : Configuring end-user authentication with firewall redirect
Configuring end-user authentication with firewall redirect
Firewall Redirect | Forcepoint Web Security Cloud
Two types of user authentication are supported for firewall redirect: NTLM and basic authentication.
*
NTLM identification is seamless, and uses the end user's NTLM credentials to identify them to the service.
*
Basic (manual) authentication uses the end user's email address and password. Users receive an authentication prompt when they attempt to navigate to a website.
 
* 
Note 
Authentication is an account-level setting which is applied to all users. You cannot disable authentication for one set of users (for example, on a guest network), while enabling it for others.
To enable authentication:
1.
Navigate to the Web > Policies page in the cloud portal and select a policy.
2.
Select the Access Control tab for the policy, and select Always authenticate users on the first access.
3.
If you are using SSL decryption, also navigate to the Web > Block & Notification Pages page and mark the Use Forcepoint LLC certificate to serve... check box.
You must also install the Forcepoint root certificate on all end user machines in your environment to enable SSL decryption and allow the authentication page and block pages to be displayed for HTTPS sites.
If this setting is not enabled:
*
Users accessing HTTPS sites are allowed to browse anonymously.
*
When a user navigates to a blocked URL, the connection is closed, with no block page displayed.
4.
Add the following URLs to the local intranet zone in users' browsers:
http://proxy-login.blackspider.com
https://ssl-proxy-login.blackspider.com
For information on how to do this for various browsers, see the knowledge base article Configuring browsers for NTLM identification.

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Firewall Redirect: Forwarding Traffic to the Forcepoint Cloud Service : Configuring end-user authentication with firewall redirect
Copyright 2022 Forcepoint. All rights reserved.