Web-Auth Policy Sub-Commands - ZyXEL Communications UAG Series User Manual

24.2.2 web-auth policy Sub-commands

The following table describes the sub-commands for several web-auth policy commands. Note that
not all rule commands use all the sub-commands listed here.
Table 81 web-auth policy Sub-commands
COMMAND
[no] activate
[no] authentication {force |
required}
[no] description description
[no] destination {address_object |
group_name}
[no] eps <1..8> eps_object_name
[no] eps activate
[no] eps periodical-check
<1..1440>
[no] force
interface interface_name
[no] schedule schedule_name
[no] source {address_object |
group_name}
eps insert <1..8> eps_object_name
eps move <1..8> to <1..8>
show
UAG CLI Reference Guide
DESCRIPTION
Activates the specified condition. The no command deactivates the
specified condition.
Selects the authentication requirement for users when their traffic matches
this policy. The no command means user authentication is not required.
force: Users need to be authenticated and the UAG automatically display
the login screen when users who have not logged in yet try to send HTTP
traffic.
required: Users need to be authenticated. They must manually go to the
login screen. The UAG will not redirect them to the login screen.
Sets the description for the specified condition. The no command clears the
description.
description: You can use alphanumeric and
characters, and it can be up to 60 printable ASCII characters long.
Sets the destination criteria for the specified condition. The
removes the destination criteria, making the condition effective for all
destinations.
Associates the specified End Point Security (EPS) object with the specified
condition. The UAG checks authenticated users' computers against the
condition's endpoint security objects in the order of 1 to 8. You have to
configure order 1 and then the others if any. The no command removes the
specified EPS object's association with the condition.
To apply EPS for this condition, you have to also make sure you enable EPS
and set authentication to either required or force for this condition.
Enables EPS for the specified condition. The no command means to disable
EPS for the condition.
Sets a number of minutes the UAG has to repeat the endpoint security
check. The command means that the UAG only perform the endpoint
no
security check when users log in to the UAG.
Forces users to log in to the UAG if the specified condition is satisfied. The
command means that users do not log in to the UAG.
no
Sets an interface on which packets for the policy must be received.
Sets the time criteria for the specified condition. The no command removes
the time criteria, making the condition effective all the time.
Sets the source criteria for the specified condition. The no command
removes the source criteria, making the condition effective for all sources.
Inserts the specified EPS object for the condition. The number determines
the order that this EPS rule is executed in the condition.
Changes an endpoint object's position in the execution order of the
condition.
Displays information about the specified condition.
Chapter 24 Web Authentication
()+/:=?!*#@$_%-
command
no
145