Login
- Table of Contents
-
- 05-Objects
- 01-Health monitoring
- 02-User management
- 03-Authentication
- 04-Portal
- 05-WAF
- 06-IPS
- 07-Anti-virus
- 08-Data filtering
- 09-URL filtering
- 10-File filtering
- 11-APT defense
- 12-APR
- 13-Terminal identification
- 14-Security action
- 15-Advanced settings
- 16-Intelligences from the threat management platform
- 17-Object group
- 18-ACL
- 19-SSL
- 20-Public key management
- 21-PKI
- 22-Attack defense
- 23-Trusted access controllers
- Related Documents
-
| Title | Size | Download |
|---|---|---|
| 23-Trusted access controllers | 24.80 KB |
Trusted access controllers
This help contains the following topics:
· Configure a trusted access controller
Introduction
The device can direct received user requests to a trusted access controller for identity authentication, and then verify whether the users passing the authentication are authorized to access the requested resources.
Configure a trusted access controller
1. Click the Objects tab.
2. In the navigation pane, select Trusted Access Controller.
3. Click Create.
4. Configure the trusted access controller parameters.
Table 1 Trusted access controller configuration items
|
Item |
Description |
|
Name |
Enter the name of the trusted access controller, which is a case-insensitive string. |
|
Local service URL |
Enter the local service URL that is used to collaborate with the trusted access controller. The trusted access controller can use the local service URL to notify the device of user offline and user permission change events. The local service URL must be in the format of protocol type://server IP address:port number. · The protocol type can be HTTP or HTTPS. · The server IP address must be an IPv4 address in the current software version. On a device, you cannot configure local service URLs with the same server IP address and port number for different trusted access controllers. You cannot specify the same server IP address and port number for both the local and peer service URLs of a trusted access controller. |
|
Peer service URL |
Enter the peer URL that provides external authentication services. The device can use the peer service URL to perform registration and user permission authorization with the trusted access controller. The peer service URL must be in the format of protocol type://server IP address:port number. · The protocol type can be HTTP or HTTPS. · The server IP address must be an IPv4 address in the current software version. On a device, you cannot configure peer service URLs with the same server IP address and port number for different trusted access controllers. You cannot specify the same server IP address and port number for both the local and peer service URLs of a trusted access controller. |
|
SSL client policy |
Specify the SSL client policy used by the trusted access controller to encrypt traffic exchanged with the device (SSL client). You can select an existing SSL client policy or create a new SSL client policy. |
|
SSL server policy |
Specify the SSL server policy used by the trusted access controller to encrypt traffic exchanged with the device (SSL server). You can select an existing SSL server policy or create a new SSL server policy. |
|
Authentication service function |
Enable or disable the authentication service. |
5. Click OK.
The trusted access controller will be displayed on the trusted access controller page.
