10-27-2008 06:17 AM
Hi,
I have 2 WSA's running on version 5.6.x
Im just wonderin why the GLOBAL Policy is using ALL Identity instead of
Global Identity since this is a default policy.
Are there any write ups for this one?
regards,
kira
10-27-2008 03:51 PM
Kira,
At the access policy layer, the default policy needs to specify what action to have in case there is no authentication.
For example, You may create an Identity policy to not authenticate certain traffic, such as Windows Update.
The global policy must be the final decision for all traffic (authenticated and not) and thus cannot be linked to an Identity policy (which may or may not require authentication).
Hope this helps.
10-28-2008 09:16 AM
Thanks, that is correct.
But i just found out that my other WSA is using a GLOBAL IDENTITY.. as per support... it shouldnt be the case..
im using version 5.6.0-611
regards,
kira
10-28-2008 05:48 PM
Kira,
Ah... You are running into upgrade defect 43812. This will be fixed in one of the upcoming versions.
This may or may not have policy matching side effects.
You should be able to upgrade to build 618 which fixes this issue.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide