Guest Authentication Setup in SGOS 4.x and early 5.x


<< Back to Knowledge Search

Solution

Overview

You want to learn how to set up guest authentication

Cause
Resolution

 To set up guest authentication:

  1. Create your IWA realm.
     
  2. Create a Policy Substitution realm:
    1. In the Management Console, select Authentication > Policy Substitution.
    2. Click New and name the realm “Policy_Sub.”
    3. Click OK.
    4. Click Apply.
    5. Select the User Information tab.
    6. Set the Username and Full Username to $(lt)guest$(gt).
    7. Click Apply.
       
  3. Create a Sequence realm:
    1. In the Management Console, select Authentication >Sequences > Sequence Realms.
    2. Click New and name the realm “AD_Then_Guest.”
    3. Click OK.
    4. Click Apply.
    5. Select the Sequence Main tab.
    6. Click New.
    7. Add the IWA realm and then the Policy_Sub realm.
    8. Click Apply.
       
  4. Set up the virtual URL:
    1. Select Configure > Authentication > IWA > IWA General and copy the Virtual URL to your clipboard.
    2. Select Configure > Authentication > Sequences > Sequence General and paste the Virtual URL.
    3. Click Apply.
       
  5. Create the guest authentication policy:
    1. Select Configure > Policy > Visual Policy Manager > Launch.
    2. Go to the Web Authentication Layer.
    3. Edit the action for the auth rule and change the Realm to AD_Then_Guest. Note that you may need to do this for all you authentication rules.

 

Any machine that is not logged in to your domain will send the <guest> username when it gets the auth challenge and that will fail IWA, but fall to the policy substitution realm and be authenticated.  You will see <guest> as the username in the logs, but also be able to trigger on <guest> in the source – user section of the Web Access layer, allowing you to write policy based on that.

 
Workaround
Additional Information
Bug Number
InQuira Doc IdKB3920
Attachment

Article Feedback

Hide Properties
First Published      10/01/2014
Last Modified      10/01/2014
Last Published      10/01/2014
Article Audience
Product      ProxySG
Software      SGOS 4, SGOS 5
Topic      BCAAA
Article Number      000009692
Summary     
Was this helpful?
Comments:
 
Previous MonthNext Month
SunMonTueWedThuFriSat