Welcome to Scribd, the world's digital library. Read, publish, and share books and documents. See more
Standard view
Full view
of .
Look up keyword or section
Like this

Table Of Contents

Important Information
Getting Started With Identity Awareness
AD Query
Captive Portal
Identity Agents
Identity Awareness Scenarios
Acquiring Identities for Active Directory Users
Acquiring Identities with the Captive Portal
Acquiring Identities with Identity Agents
Acquiring Identities in Application Control
Configuring Identity Awareness
Enabling Identity Awareness on the Security Gateway
Results of the Wizard
Creating Access Roles
Using Identity Awareness in the Firewall Rule Base
Using Identity Awareness in the Firewall Rule Base
Access Role Objects
Negate and Drop
Using Identity Awareness in the Application Control Rule Base
Source and Destination Fields
Negate and Block
Configuring Captive Portal in SmartDashboard
Portal Network Location
Access Settings
Authentication Settings
Customize Appearance
User Access
Agent Deployment from the Portal
Configuring Identity Agents
Identity Agent Types
Identity Agent Deployment Methods
Configuring Agent Deployment from Captive Portal
Configuring Identity Agents in SmartDashboard
Configuring Identity Awareness for a Log Server
Configuring Identity Awareness for a Log Server
Enabling Identity Awareness on the Log Server
To enable Identity Awareness on the Log Server:
Identity Sources
Choosing Identity Sources
Advanced AD Query Configuration
Configuring Identity Awareness for a Domain Forest (Subdomains)
Specifying Domain Controllers per Security Gateway
Permissions and Timeout
Excluding Users
Multiple Gateway Environments
Non-English Language Support
Check Connectivity
Use wbemtest to Verify WMI
Check Domain Administrator Credentials
Verify the WMI Service
Configuring the Firewall
Confirm that Security Event Logs are Recorded
Install Database for a Log Server
Advanced Captive Portal Configuration
Customizing Text Strings
Adding a New Language
Server Certificates
Advanced Identity Agents Configuration
Customizing Parameters
Prepackaging Identity Agent Installation
Advanced Deployment
Deployment Options
Configuring Clusters in Bridge Mode
Preparing Clusters with a Bridge
Checking the Bridge Configuration
Configuring the External Identity Awareness Gateway
To configure the external Identity Awareness gateway:
Configuring the Cluster
Configuring Cluster and Bridge Support
To configure cluster and bridge support:
Deploying a Test Environment
Testing Identity Sources
Testing Identity Agents
Deployment Scenarios
Perimeter Security Gateway with Identity Awareness
Data Center Protection
Large Scale Enterprise Deployment
Network Segregation
Distributed Enterprise with Branch Offices
Wireless Campus
Dedicated Identity Acquisition Gateway
Kerberos SSO Configuration
How SSO Operates
SSO Configuration
AD Configuration
SmartDashboard Configuration
Prepackaging Identity Agents
Custom Identity Agent msi
Using the cpmsi_tool.exe
Configuring Installation - [Properties] Section
Configuring Installed Features - [Features] Section
Configuring Deployed Identity Agents - [AddFiles] Section
Sample INI File
Server Discovery and Trust
Server Discovery and Trust Options
Option Comparison
AD Based Configuration
DNS Based Configuration
Remote Registry
0 of .
Results for:
No results containing your search query
P. 1
CP R75 Identity Awareness Admin Guide

CP R75 Identity Awareness Admin Guide

Ratings: (0)|Views: 1,138|Likes:
Published by ecorona33

More info:

Published by: ecorona33 on Jan 11, 2011
Copyright:Attribution Non-commercial


Read on Scribd mobile: iPhone, iPad and Android.
download as PDF, TXT or read online from Scribd
See more
See less





You're Reading a Free Preview
Pages 4 to 84 are not shown in this preview.
You're Reading a Free Preview
Pages 87 to 94 are not shown in this preview.

Activity (5)

You've already reviewed this. Edit your review.
1 hundred reads
1 thousand reads
Oscar Castillo liked this
jmc_sep52178 liked this

You're Reading a Free Preview

/*********** DO NOT ALTER ANYTHING BELOW THIS LINE ! ************/ var s_code=s.t();if(s_code)document.write(s_code)//-->