Table of Contents
Advertisement
When using the Auto scheme, users can type
https://www.example.virtual.host.com
scheme set to Auto, it's still under the control of the access policy.
CAUTION:
It is the Administrator's responsibility to configure the correct scheme used to talk to the
backend server. Auto (HTTP/HTTPS) Scheme can operate only if HTTP access is enabled for the
Virtual Host (under the Virtual Host tab) and authentication is disabled (under the Offloading tab)
that can be insecure. Therefore, you are prompted to click OK to enable HTTP for Virtual Host.
Generic (SSL Offloading) – use SSL offloading to access custom SSL applications
•
(non-HTTP(S) applications)
For more information about the Generic (SSL Offloading) option, see
Offloading Portal Wizard
5
Enter the host name or private IP address of the backend host into the Application Server Host field.
6
Optionally enter the IPv6 address of the backend host into the Application Server IPv6 Address field.
7
In the Port Number (optional) field, optionally enter a custom port number to use for accessing the
application.
8
In the Homepage URI (optional) field, optionally enter a URI to a specific resource on the Web server to
which the user is forwarded the first time the user tries to access the Application Offloading Portal. This
is a string in the form of: /exch/test.cgi?key1=value1&key2=value2
When this field is configured, it redirects the user to the Web site's home page the first time the user
accesses the portal. This happens only when the user is accessing the site with no URL path (that is,
when accessing the root folder, for example: https://www.google.com/). This is not an alias for the root
folder. The user can edit the URL to go back to the root folder.
The key=value pairs allow you to specify URL query parameters in the URL. You can use these for any
Web site that does not have a default redirect from the root folder to the home page URL. Outlook Web
Access is one example, but note that most public sites do have a default redirect.
a
Under Security Settings, select Enable Web Application Firewall to enable the feature.
b Select Disable Authentication Controls, Access Policies, and CSRF Protection (if enabled) if
you need no authentication, access policies, or CSRF protection enforced. This is useful for
publicly hosted Web sites.
a
To configure ActiveSync authentication, clear Disable Authentication Controls to display the
authentication fields. Select Enable ActiveSync authentication and then type the default
domain name. The default domain name is not used when the domain name is set in the email
client's setting.
9
Select Automatically Login to configure Single Sign-On settings.
10 For automatic login using SSO, select one of the following radio buttons:
•
Use SSL-VPN account credentials – allow log in to the offloaded application using the
credentials configured on the SMA/SRA appliance.
•
Use custom credentials – displays Username, Password, and Domain fields where you can
enter the custom credentials for the application or use dynamic variables. For the Password
field, enter the custom password to be passed, or leave the field blank to pass the current user's
password to the offloaded application portal. For the other fields, dynamic variables can be used,
such as those shown in the following table:
http://www.example.virtual.host.com
in browser's address bar to test this feature. Even
on page 154.
Configuring with the
Dell SonicWALL Secure Mobile Access 8.5
Administration Guide
or
152
Advertisement
Chapters
Table of Contents
Troubleshooting
