Video Screencast Help
Symantec to Separate Into Two Focused, Industry-Leading Technology Companies. Learn more.

Webgateway Inline + Proxy mode & AD Authentication

Created: 12 Jun 2013 • Updated: 13 Jun 2013 | 2 comments
This issue has been solved. See solution.

Hi,

We are in a process of using Symantec Webgateway in our environment.

 

We want to use it in a Inline + Proxy mode configuration.

 

This way it will be transparent & all traffic will go through it without teh ened to use Proxy inside any browser.

What we need to do is authentication

1- If user is already logged in into our DOmain Active Directory it does not need to authenticate because he is already authenticated

2- If the user is using a MAC,Iphone,Ipad,Laptop and he is outside our domain so he should be authenticated and he should provide his user and pw to browse.

 

Is using the webgateway in a Inline + Proxy mode work with Authentication through our AD?

I saw the below implementationguide and it does not mention anything about this subject.

http://kbdownload.symantec.com/resources/sites/BUSINESS/content/live/DOCUMENTATION/6000/DOC6044/en_US/Symantec_Web_Gateway_5.1_Implementation_Guide_EN.pdf?__gda__=1371068745_1677fe334cf7cacc411329182c5c25c7

 

Thank you

 

Operating Systems:
Discussion Filed Under:

Comments 2 CommentsJump to latest comment

SMLatCST's picture

First off, if you're not going to be configuring any of your endpoint machines to the use the proxy, the you can set the SWG to work in "Inline Only" mode (the proxy bit is only required if you're pointing endpoint machines' browsers at the SWG).

To answer your question however, yes the SWG is able to authenticate users against AD when operating Inline.  To get the behaviour you're after, you'll want to enable NTLM authentication and set an "Enforce Authentication" policy.

More info below:

http://www.symantec.com/docs/TECH97340
http://www.symantec.com/docs/HOWTO54152
http://www.symantec.com/docs/TECH175805

SOLUTION