Security > Content Gateway user authentication > Rule-Based Authentication > Creating an authentication rule
|
|
In the Rule editor, after entering all specifiers, click Add before clicking Apply. If Apply is clicked first, or the edit window is closed, all entry fields are cleared.
|
1.
|
Go to Configure > Security > Access Control and review and adjust the Global Authentication Options and Domains list.
|
2.
|
If AD domains are used with IWA, go to Monitor > Security > Integrated Windows Authentication and confirm that the IWA domains are joined and that connections are established.
|
3.
|
Go to Configure > Security > Access Control > Authentication Rules. A list of existing authentication rules is displayed at the top of the page.
|
4.
|
Click Edit File to open the rule editor.
|
6.
|
Select Status Enabled if you want the rule to be active after the rule is added and Content Gateway is restarted.
|
7.
|
Enter a unique Rule Name (required). A short, descriptive name will help you recognize the rule and its purpose. It is recommended that the name not exceed 50 characters.
|
8.
|
If the rule applies to specific IP addresses, in the Source IP Addresses field, enter a comma-separated list of individual IP addresses and/or IP address ranges. Do not use spaces. For example:
|
9.
|
If the rule applies to inbound traffic on a specific port, select the Proxy Port from the drop down list. This option is valid with explicit proxy only.
|
10.
|
To apply the rule to specific User-Agent values, enter POSIX-compliant regular expressions (regex) to match the desired values. To specify a common browser type, select a Predefined regex from the drop down list and click Include.
|
a.
|
From the Domains drop down list, select the applicable domain and click Include. Only domains that have been added to the Domains list are available (Configure > Security > Access Control > Domains).
|
b.
|
If an ordered list of domains will be used, select each domain one at a time and click Include. Then select domains in the list and use the up and down arrows to achieve the desired order.
|
12.
|
Next to Captive Portal, click:
|
|
Enabled for HTTPS Authentication page to redirect users to a customizable web portal page for authentication.
|
|
Enabled for HTTP Authentication page to redirect users to a customizable web portal page for authentication.
|
13.
|
Click Add to add the rule.
|
15.
|
Click Apply and then restart Content Gateway to put the rule into effect.
|
Security > Content Gateway user authentication > Rule-Based Authentication > Creating an authentication rule
|