We have a Cisco IronPort S370 web security appliance, and want to set it up so that it can authenticate users in our Active Directory and apply access policies to them.
I joined the appliance to the domain and added the authentication realm, but I don't see anywhere to specify groups from AD to create policies for. For instance, if I create some URL filtering policy, I want to be able to connect that back to a group in AD.
Anyone know how to do this?
Solved! Go to Solution.
1.First check whether your WSA is integrated with AD successfully by Test authentication realm settings, it should be successful.
2.Then go to Access policies----New policy---under policy member definition----check Selected groups and users radio button--then click No groups entered link to specify AD group.Here you will find all AD groups, select your desired group and add it to right pane.
"Please rate helpful posts"
OK, step 1 works: the IronPort tests out fine against AD
step 2 is where I get stuck.
I go into Access Policies-->New Policy
I give it a name like "Test" and then go to Policy Member Definition
Below that is a pull down menu with "Identities and Users" with the options "All Identities" and "Select One or More Identities"
I don't see a radio button or a "No groups entered" option