The Authentication page allows administrators to define the authentication policies for a specific group of users, based on their domain. To define an authentication policy, go to Identities > Authentication.
The following authentication options are:
|Windows Integrated (IWA)||Standard, automated authentication through Integrated Windows Authentication (IWA)|
|Password||Manual authentication where users are prompted to enter their Active Directory credentials|
|Provisional||Users that will not be authenticated|
The default authentication type for the Site-wide Default policy is Windows Integrated (IWA) and Password. Therefore, no additional policies need to be created if you desire to support standard Active Directory-based authentication between the client and the PEM.
If you have clients belonging to domains in your infrastructure that cannot authenticate with PEM, you can create a policy for those domains and select Provisional as the authentication type.
Create an Authentication Policy
To create an authentication policy, select Add then populate the following fields:
|Name||The name of the authentication policy|
|Domain||The specific domain that will be assigned to the authentication policy. For example, @domain.com|
|Authentication||Select the authentication type from the drop-down which will be enforced to users belonging to domain, specified in the policy|