cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Skip Authorization Kerberos

Jump to solution

Hello , 

We want to skip an authorization for exact ip address while we are using Kerberos authorization .

I have one rule set which was working properly while we were using ntlm , but now on kerberos it is not working . any ideas? 

\\

We are using MWG 8.2.2(30657)

1 Solution

Accepted Solutions

Re: Skip Authorization Kerberos

Jump to solution

I have changed rule set , I added this "skip authorization for clients ips that are in list allowed clients ips"

 

In the Kerberos authorization rule . and it is working perfectly as I see.

 

It was outside of authorization rule . 

View solution in original post

3 Replies
aloksard
McAfee Employee
McAfee Employee
Report Inappropriate Content
Message 2 of 4

Re: Skip Authorization Kerberos

Jump to solution

Hi,

Hope you are doing well.

We would need a rule trace and feedback file in order to understand why your existing policy is not working as expected.

You can open a SR with support and then upload required logs for investigation.

 

In order to skip authentication for a particular client IP Address , you can create a rule above your Kerberos authentication rule using criteria Client.IP equals 1.1.1.1 and set action as Stop Rule Set accordingly.

 

Note:-  1.1.1.1 is used as an example here.

 

Regards

Alok Sarda

Re: Skip Authorization Kerberos

Jump to solution
Hello and happy new year  ,
 
Rule set summary 
 
Name:
Skip Authorization for Client IPs That Are in List Allowed Client IPs
Comment:
Rule Criteria:
Client.IP is in range list Allowed Client IPs
Action:
Stop Rule Set
Events:
 
 
Also I opened case for support . Thanks .

Re: Skip Authorization Kerberos

Jump to solution

I have changed rule set , I added this "skip authorization for clients ips that are in list allowed clients ips"

 

In the Kerberos authorization rule . and it is working perfectly as I see.

 

It was outside of authorization rule . 

View solution in original post

You Deserve an Award
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from McAfee experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by McAfee employees.
Join the Community
Join the Community