Powered by Zoomin Software. For more details please contactZoomin

WAF Management Server Manager User Guide

Filters

Clear All Filters
Source Type
Application Security
Data Security
Network Security
Application Performance
Product Versions
Hypervisor Installation
Document Type
Access
Product Area
Clear All Filters
This guide

Authentication and Authorization Configuration

Save PDF
Save selected topicSave selected topic and subtopicsSave all topics
Share
Share to emailCopy topic URL
Feedback
Print
Table of Contents
HomeWAF Management Server Manager User Guide...System DefinitionsSecurity and AuthenticationAuthentication and Authorization ConfigurationCurrent page
Table of Contents

Authentication and Authorization Configuration

 Authentication and Authorization Configuration

The Authentication and Authorization configuration includes the following two parts:

  • In the Authentication section, add username and password to identify the user.
  • In the Authorization section, define the process of granting roles and permissions for SecureSphere/external system users.

To configure user authentication:

  1. In the Admin workspace, select System Definitions > Authentication & Authorization Configuration. The Authentication & Authorization Configuration pane appears.
  2. For User Authentication, select one of the following options:
    • SecureSphere: Allows authenticating using the internal SecureSphere database only.
    • External: Allows authenticating using external authentication systems. If you select this option, you must select an external system you previously configured from the External Authentication System dropdown list. The external systems that you can choose from are defined in the External Systems pane, see External Systems.

      Note: When changing an external system to an X.509 certificate the user logged into SecureSphere must be connected using CAC. If not, a message is displayed asking you to first configure an Administrator as the External User, then log in as this administration. Only then to change User Authentication to External.

    • User Specific: Allows authenticating using SecureSphere database or external authentication systems. If you select this option, you must select the external system from the External Authentication System dropdown list. The external systems that you can choose from are defined in the External Systems pane, External Systems.
  3. To enable managing SecureSphere users in LDAP, select the External Authorization checkbox. The LDAP group permissions are reflected in the SecureSphere external role permissions. For External Authorization System, select an external system from the dropdown list.

    For information about external systems, see External Systems.

  4. Click Save.

    Notes:

    • When de-selecting the External Authorization option, all the external users are moved to the regular users section in the Users & Permissions window. They maintain their external system authentication, but lose their external role assignment.
    • When selecting the External Authorization option, all Users with external system authentication become externally authorized: they are moved to the External Users section in the Users & Permissions window, and their permissions are based on their External Roles.

Was this topic helpful?
LikeDislike