cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
371
Views
0
Helpful
1
Replies
Highlighted
Beginner

Consolidating Identification Profile

Hello everyone, I am new to the community and I am here to seek some help.

 

I am working on a project to assess WSA deployments to ensure best practices. There are 8 WSAs in the network managed by a single Cisco SMA. I noticed several Identification Profiles contain a huge list of Subnets and IP addresses that are configured to be exempt from Authentication. Is there a way to consolidate or shorten the list of subnets based on WSA best practices? Is there any other way to define users/subnets to bypass authentication in the WSA?

 

Any suggestion/help is highly appreciated.

 

Thanks,

Raad

 

 

1 REPLY 1
Highlighted
Engager

The subnets can be consolidated if they are adjacent... it will take CIDR notation.

You may want to figure out why each subnet needs to exempted from auth...

You can also decide not to do auth on other criteria, it may make sense to not auth certain sites, or certain user agents...


Content for Community-Ad