config authentication rule
Configure Authentication Rules.
config authentication rule Description: Configure Authentication Rules. edit <name> set status [enable|disable] set protocol [http|ftp|...] set web-proxy {string} set srcintf <name1>, <name2>, ... set srcaddr <name1>, <name2>, ... set dstaddr <name1>, <name2>, ... set srcaddr6 <name1>, <name2>, ... set dstaddr6 <name1>, <name2>, ... set ip-based [enable|disable] set active-auth-method {string} set sso-auth-method {string} set web-auth-cookie [enable|disable] set cors-stateful [enable|disable] set cors-depth {integer} set transaction-based [enable|disable] set web-portal [enable|disable] set comments {var-string} set form-auth-fallback [enable|disable] next end
config authentication rule
Parameter |
Description |
Type |
Size |
Default |
||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
name |
Authentication rule name. |
string |
Maximum length: 35 |
|
||||||||||
status |
Enable/disable this authentication rule. |
option |
- |
enable |
||||||||||
|
|
|||||||||||||
protocol |
Authentication is required for the selected protocol. |
option |
- |
http |
||||||||||
|
|
|||||||||||||
web-proxy |
Web-Proxy profile. |
string |
Maximum length: 35 |
|
||||||||||
srcintf |
Incoming (ingress) interface. Interface name. |
string |
Maximum length: 79 |
|
||||||||||
srcaddr |
Authentication is required for the selected IPv4 source address. Address name. |
string |
Maximum length: 79 |
|
||||||||||
dstaddr |
Select an IPv4 destination address from available options. Required for web proxy authentication. Address name. |
string |
Maximum length: 79 |
|
||||||||||
srcaddr6 |
Authentication is required for the selected IPv6 source address. Address name. |
string |
Maximum length: 79 |
|
||||||||||
dstaddr6 |
Select an IPv6 destination address from available options. Required for web proxy authentication. Address name. |
string |
Maximum length: 79 |
|
||||||||||
ip-based |
Enable/disable IP-based authentication. When enabled, previously authenticated users from the same IP address will be exempted. |
option |
- |
enable |
||||||||||
|
|
|||||||||||||
active-auth-method |
Select an active authentication method. |
string |
Maximum length: 35 |
|
||||||||||
sso-auth-method |
Select a single-sign on (SSO) authentication method. |
string |
Maximum length: 35 |
|
||||||||||
web-auth-cookie |
Enable/disable Web authentication cookies. |
option |
- |
disable |
||||||||||
|
|
|||||||||||||
cors-stateful |
Enable/disable allowance of CORS access. |
option |
- |
disable |
||||||||||
|
|
|||||||||||||
cors-depth |
Depth to allow CORS access. |
integer |
Minimum value: 1 Maximum value: 8 |
3 |
||||||||||
transaction-based |
Enable/disable transaction based authentication. |
option |
- |
disable |
||||||||||
|
|
|||||||||||||
web-portal |
Enable/disable web portal for proxy transparent policy. |
option |
- |
enable |
||||||||||
|
|
|||||||||||||
comments |
Comment. |
var-string |
Maximum length: 1023 |
|
||||||||||
form-auth-fallback |
Enable/disable to use FORM authentication if needed. |
option |
- |
disable |
||||||||||
|
|