Manual authentication
Transparent identification is not always available or desirable in all environments. For organizations that do not use transparent identification, or in situations when transparent identification is not available, you can still apply user and group-based policies using manual authentication.
Manual authentication prompts users for a user name and password the first time they access the Internet through a browser. Web protection software confirms the password with a supported directory service, and then retrieves policy information for that user.
You can configure web protection software to enable manual authentication any time transparent identification is not available (see Configuring user identification and authentication and Configure user access to the hybrid service.
You can also create a list of specific machines with custom authentication settings on which users are prompted to log on when they open a browser (see Setting authentication rules for specific machines).
When manual authentication is enabled, users may receive HTTP errors and be unable to access the Internet if:
- They make 3 failed attempts to enter a password. This occurs when the user name or password is invalid.
- They click Cancel to bypass the authentication prompt.
When manual authentication is enabled, users who cannot be identified are prevented from browsing the Internet.