On the following picture an administrator configures Identity Awareness:
After clicking “Next” the above configuration is supported by:
Kerberos SSO which will be working for Active Directory integration
Based on Active Directory integration which allows the Security Gateway to correlate Active Directory users
and machines to IP addresses in a method that is completely transparent to the user
Obligatory usage of Captive Portal
The ports 443 or 80 what will be used by Browser-Based and configured Authentication
To enable Identity Awareness:
1. Log in to R80 SmartConsole.
2. From the Gateways & Servers view, double-click the Security Gateway on which to enable Identity
3. On the Network Security tab, select Identity Awareness.
The Identity Awareness Configuration wizard opens.
4. Select one or more options. These options set the methods for acquiring identities of managed and
AD Query – Lets the Security Gateway seamlessly identify Active Directory users and computers.
Browser-Based Authentication – Sends users to a Web page to acquire identities from unidentified users.
If Transparent Kerberos Authentication is configured, AD users may be identified transparently.
Terminal Servers – Identify users in a Terminal Server environment (originating from one IP address).