Basic components of authentication, authorization, and auditing configuration

The basic components of the authentication, authorization, and auditing configuration are as follows:

  • Authentication virtual server - All authentication requests are redirected by the traffic management virtual server (load balancing or content switching) to the authentication virtual sever. This virtual server processes the associated authentication policies and accordingly provides access to the application. For details, see Authentication virtual server.

  • Authentication profiles - An authentication profile specifies the authentication virtual server, the authentication host, the authentication domain, and an authentication level.

You can create one or more authentication profiles to specify different authentication settings and bind these authentication profiles to relevant traffic management servers based on your requirements. For details, see Authentication profiles.

  • Authentication policies - When users log on to the NetScaler or NetScaler Gateway appliance, they are authenticated according to a policy that you create. An authentication policy comprises of an expression and an action. Authentication policies use NetScaler expressions. For details, see Authentication policies.

  • Authorization policies - When you configure an authorization policy, you can set it to allow or deny access to network resources in the internal network. For details, see Authorization policies.

  • Users and groups: - After configuring the authentication, authorization, and auditing basic setup, you create users and groups. You first create a user account for each person who will authenticate via the NetScaler appliance. If you are using local authentication controlled by the NetScaler appliance itself, you create local user accounts and assign passwords to each of those accounts. For details, see Users and groups.

Basic components of authentication, authorization, and auditing configuration

In this article