Back=right mouse click.
IWSVA supports the use of guest policies to allow users who log in to the network, but are not found in the LDAP, to still fall under the aegis of IWSVA scanning and content policy.
Guest policies are available for HTTPS decryption, HTTP Scanning, Applets and ActiveX security, and URL Filtering.
For example, say a guest user logs in using credentials from a part of the corporate network that is not covered by the local LDAP server for example, someone from the German office logging in locally to the US office.
The following rules and conditions apply:
IWSVA needs to be configured for User/group name authentication (LDAP) in the Administration > IWSVA Configuration > User Identification | User Identification tab.
Note: IWSVA does not support user/group name authentication in simple transparency mode.
Enable guest account must be selected in the Administration > Deployment Wizard > Proxy Settings page, and a port specified.
Guest users will need to be told which proxy and port to specify in their Browser's proxy settings.
Guest policies always take the 2nd lowest priority—if a guest is included in any policy other than the global policy, the conditions of the other policy will apply to the guest.
Referral Chasing
