Solutions

Guest Authentication Setup in SGOS 4.x and early 5.x

Solutions ID:    KB3920
Version:    1.0
Status:    Published
Published date:    07/27/2010
 

Problem Description

You want to learn how to set up guest authentication

Resolution

 To set up guest authentication:

  1. Create your IWA realm.
     
  2. Create a Policy Substitution realm:
    1. In the Management Console, select Authentication > Policy Substitution.
    2. Click New and name the realm “Policy_Sub.”
    3. Click OK.
    4. Click Apply.
    5. Select the User Information tab.
    6. Set the Username and Full Username to $(lt)guest$(gt).
    7. Click Apply.
       
  3. Create a Sequence realm:
    1. In the Management Console, select Authentication >Sequences > Sequence Realms.
    2. Click New and name the realm “AD_Then_Guest.”
    3. Click OK.
    4. Click Apply.
    5. Select the Sequence Main tab.
    6. Click New.
    7. Add the IWA realm and then the Policy_Sub realm.
    8. Click Apply.
       
  4. Set up the virtual URL:
    1. Select Configure > Authentication > IWA > IWA General and copy the Virtual URL to your clipboard.
    2. Select Configure > Authentication > Sequences > Sequence General and paste the Virtual URL.
    3. Click Apply.
       
  5. Create the guest authentication policy:
    1. Select Configure > Policy > Visual Policy Manager > Launch.
    2. Go to the Web Authentication Layer.
    3. Edit the action for the auth rule and change the Realm to AD_Then_Guest. Note that you may need to do this for all you authentication rules.

 

Any machine that is not logged in to your domain will send the <guest> username when it gets the auth challenge and that will fail IWA, but fall to the policy substitution realm and be authenticated.  You will see <guest> as the username in the logs, but also be able to trigger on <guest> in the source – user section of the Web Access layer, allowing you to write policy based on that.

 

Rate this Page

Please take a moment to complete this form to help us better serve you.

Did this document help answer your question?
 
 
If you are finished providing feedback, please click the RATE CONTENT button. Otherwise, please add more detail in the following text box and then click RATE CONTENT.
 
 

Your response will be used to improve our document content.

Ask a Question