Fortinet 242 FortiWeb 5.0 Patch 6 Administration Guide
5. If you enabled Cache, also configure the following:
6. Click OK.
7. Click Create New.
A dialog appears.
8. From the Auth Rule drop-down list, select the name of an authentication rule.
9. Click OK.
10.Repeat the previous steps for each individual rule that you want to add to the authentication
policy.
Cache Enable if you want to cache authentication query results.
Tip: This can improve performance, especially if the connection to the
remote authentication server is slow or experiences latency.
Alert Type Select whether to log authentication failures and/or successes:
•None — Do not generate an alert email and/or log message.
•Failed Only — Alert email and/or log messages are caused only by HTTP
authentication failures.
•Successful Only — Alert email and/or log messages are caused only by
successful HTTP authentication.
•All — Alert email and/or log messages are caused for all HTTP
authentication attempts, regardless of success or failure.
Event log messages contain the user name, authentication type, success or
failure, and source address (for example, User jdoe HTTP BASIC login
successful from 172.20.120.46) when an end-user successfully
authenticates. A similar message is recorded if the authentication fails (for
example, User hackers HTTP BASIC login failed from
172.20.120.227).
Setting name Description
Cache Timeout Type the number of seconds that authentication query results will be
cached.
When a record’s timeout is reached, FortiWeb will remove it from the
cache. Subsequent requests from the client will cause FortiWeb to query
the authentication server again, adding the query results to the cache
again.
This setting is applicable only if Cache is enabled. The default value is
300.
Setting
name
Description