Authentication bypasses enable particular web requests to be excluded from authentication which can be identified by HTTP header.
Authentication Bypass enables you to exclude particular web requests from authentication which can be identified by HTTP header.
Any HTTP header can be defined for this purpose, but the user-agent header will be used most frequently.
|
To use this feature, you must enable user authentication from System > Proxy Settings > Authentication Settings. If you do not enable user authentication, the Authentication Bypass tab will not be displayed on the Manage Policy Routes page. This feature should not be used for general authentication bypass. See User authentication for more information. |
Add an http header bypass
-
Navigate to Policy > Manage Policy Definition > Web Policy Routes. The Manage Policy Routes page is displayed.
-
Select the Authentication Bypass tab. A list of the authentication bypasses you have already configured is displayed.
-
Click
New. The Add HTTP Header Bypass dialog is displayed. -
In the Header field, enter an HTTP header you want to bypass. It will be used to identify the HTTP requests where authentication should not be requested. This field is not case-sensitive.
-
In the Value field, enter a matching header value. This field is not case-sensitive. Wildcards are not supported in this field.
The http header bypass is triggered if the Header field contains the substring specified in the Value field. In other words, the Value field can be a substring of the full header value. -
Click Add.
-
Apply the configuration.
|
If you change any configuration or policy settings, you must Apply Configuration for the new settings to take effect. You can do this either from the Changes Made panel, or System > Configuration > Apply Configuration. See Apply new configuration for more information. If you use |