Need to know the most appropriate authentication mode to use for a specific proxy deployment.
There are a number of authentication modes to choose from, when configuring ProxySG to use authentication. The following table summarises which mode to be used in each type of proxy deployment in a generic sence. One may use a different mode based on their situation.
Explicit Forwarding Proxy
Transparent Forwarding Proxy
Origin Challenge with redirection
Form Challenge with redirection
Origin IP Redirect
Form IP Redirect
Origin Cookie Redirect
Form Cookie Redirect
TCP Connection Surrogate
These modes are explained in detail in Knowledgebase article 000012964.
The IP address of the client PC is used to remember who the user is. This mode cannot be used in a NAT / Terminal Server environment.
The proxy allocates a cookie to the user and uses this to remember who the user is. This mode can be used in a NAT / Terminal Server environment.
Each TCP connection made to the proxy requires authentication. This mode can be used by clients that do not support cookies. Because each TCP connection made by the client requires authentication this mode is very secure, but increases the load on the ProxySG appliance and on the authentication infrastructure.
For further details on surrogate credentials, see 000015171.
Imported Document ID: 000015933
Subscribing will provide email updates when this Article is updated. Login is required.
Thanks for your feedback. Let us know if you have additional comments below. (requires login)
Subscribed to the Article.
Unable to subscribe
Thanks for your additional feedback !!!
Enterprise Support Virtual Agent
Rate Me :
Tell us more:
Welcome! My name is Sami, the Enterprise Support Virtual Agent answering technical support questions.