5. Create Authentication Forwards

Single-Sign-On is achieved in the SureWare A-Gate via Authentication Forwards. This is the process whereby Basic credentials are automatically forwarded to back-end servers when requesting particular resources.

To enable this process, the administrator must create at least one Authentication Forward, consisting of a name, credentials and a list of forwarding rules which state what resources are governed by this Authentication Forward. Administrators can choose to forward the session credentials, which are the username and password entered by the user via the A-Gate Login screen, or a specific trusted username and password.

If Authentication Forwards exist, the A-Gate checks every incoming request against the list of forwarding rules. If a match occurs, the A-Gate appends an authorization header with the configured credentials to the original request and sends the request to the requested back-end server.

To create an authentication forward:

Navigate to ‘Remote Access > Anywhere > Authentication Forwards’ on the web administration interface.

Set credentials. ‘Forward Session Credentials’ determines whether or not the session credentials are forwarded to the back-end servers. If ‘No’ is selected, the administrator must enter a trusted username and password. To add this rule, click ‘Add’. The new rule will appear in the list at the

Page: 8

Page 8
Image 8
RSA Security AG-600 V3.0.2 manual