10-27-2008 06:17 AM
Hi,
I have 2 WSA's running on version 5.6.x
Im just wonderin why the GLOBAL Policy is using ALL Identity instead of
Global Identity since this is a default policy.
Are there any write ups for this one?
regards,
kira
10-27-2008 03:51 PM
Kira,
At the access policy layer, the default policy needs to specify what action to have in case there is no authentication.
For example, You may create an Identity policy to not authenticate certain traffic, such as Windows Update.
The global policy must be the final decision for all traffic (authenticated and not) and thus cannot be linked to an Identity policy (which may or may not require authentication).
Hope this helps.
10-28-2008 09:16 AM
Thanks, that is correct.
But i just found out that my other WSA is using a GLOBAL IDENTITY.. as per support... it shouldnt be the case..
im using version 5.6.0-611
regards,
kira
10-28-2008 05:48 PM
Kira,
Ah... You are running into upgrade defect 43812. This will be fixed in one of the upcoming versions.
This may or may not have policy matching side effects.
You should be able to upgrade to build 618 which fixes this issue.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: