Fortinet 5.0 Patch 6 Applying user groups to an authorization realm

Fortinet 238 FortiWeb 5.0 Patch 6 Administration Guide

See also

•Configuring local end-user accounts

•Configuring LDAP queries

•Configuring RADIUS queries

•Configuring NTLM queries

•Offloading HTTP authentication & authorization

Applying user groups to an authorization realm

Authentication rules are used by the HTTP authentication policy to define sets of request URLs

that will be authorized for each end-user group.

To configure an authentication rule

1. Before you can configure an authentication rule set, you must first configure any user groups

that you want to include. For details, see “Grouping users” on page 236.

If you want to apply rules only to HTTP requests for a specific real or virtual host, you must

first define the web host in a protected servers group. For details, see “Defining your

protected/allowed HTTP “Host:” header names” on page 249.

2. Go to Application Delivery > Authentication Policy > Authentication Rule.

To access this part of the web UI, your administrator’s account access profile must have

Read and Write permission to items in the Web Protection Configuration category. For

details, see “Permissions” on page 47.

3. Click Create New.

A dialog appears.

4. In Name, type a name that can be referenced by other parts of the configuration. Do not use

spaces or special characters. The maximum length is 35 characters.

Alternatively, you can configure site publishing, which has the additional advantage of

optionally providing SSO for multiple web applications. See “Single sign-on (SSO)” on

page 243.

Delete

Edit

Clear all