This page contains options for setting up authentication, security, and other options for this accelerator.
Enable Authentication
If this box is checked, authentication is enabled for the accelerator and users trying to access
this web site will be prompted for authentication. Unchecking this box disables authentication
for the accelerator, and most of the fields on this page will be disabled. Authentication
options may be set by pressing the Authentication Options button whether or not authentication
is enabled.
Enable Secure Exchange
If this box is checked, secure exchange is enabled for the accelerator and content will be
delivered to the client over a secure connection whether or not the connection between the origin
web server and the iChain* proxy server is secure. Secure exchange options may be set by pressing
the Secure Exchange Options button only when secure exchange is enabled.
SSL Listening Port
This is the port over which users will be prompted to authenticate. It is also the port used to
deliver content to the user, if Secure Exchange is selected. This port must be unique for all
accelerators using a given IP address on the iChain* proxy server.
SSL Certificate Name
If you have created a custom SSL certificate for use on the iChain* proxy server, you can enter
the name in the text field. Otherwise, leave this selection on "Auto" and iChain* will use
automatically generated certificates for encryption and authentication.
Session Timeout Interval
This field specifies the number of minutes (or hours) a connection can remain inactive before the
user is required to authenticate again.
Forward Authentication Information to Web Server
If this box is checked, iChain will forward the authentication information, as well as any other
OLAC parameters that have been defined, to the origin web server for processing.
Authenticate over HTTP
If this box is checked, iChain will prompt users for authentication over a non-secure (clear text)
connection. This option should not be checked if you are using Secure Exchange or mutual SSL
certificate authentication.
Authentication Profiles
This list contains all the authentication profiles that have been created for this system. You can
also add, delete, or modify profiles using the buttons to the left of this field. Multiple profiles
may be used together in the following combinations: LDAP and MUTUAL or RADIUS and MUTUAL. LDAP and
RADIUS may not be used together.
Multiple Profile Rule
If you select two authentication profiles, in either an LDAP+MUTUAL or RADIUS+MUTUAL combination,
the "AND profiles" and "OR profiles" radio buttons become enabled. This allows you to select whether
a user needs to authenticate via both methods ("AND profiles") or either method ("OR profiles") to
access the resource. "OR profiles" is selected by default.
Create another accelerator
If this box is checked the wizard will return to the Web Server Accelerator
Selection page when the Next button is pressed. This provides a shortcut for creating
accelerators quickly without having to click Next and then click Back several times.
Press the Next button to advance to the next screen, or the Finish button to invoke the changes up to this point.
* Novell trademark. ** Third-party trademark. See Legal Notices.