Transparent authentication

Configuration Variable Data Type Description
proxy.config.http.transparent_ auth_hostname STRING

Default: NULL

An alternate hostname for the proxy that can be resolved for all clients via DNS. This is needed if the regular hostname of the Content Gateway machine cannot be resolved for all users via DNS.

When Cookie Sharing is enabled, this value must be the FQDN of the load balancer and must be the same value for all proxies in the cluster.

proxy.config.http.transparent_ auth_type INT

Default: 1

  • 0 associates a session ID with the username after the user session is authenticated. Use this setting to uniquely identify users who share a single IP address, such as in proxy- chaining.
  • 1 associates a client IP address with a username after the user session is authenticated.

In either mode, the length of time before a client must re-authenticate is determined by the value of proxy.config.http. transparent_auth_session_time.

proxy.config.http.transparent_ auth_session_time INT

Default: 15

The length of time (in minutes) before the browser must re-authenticate. This value is used in both IP and cookie modes.