77
Scenario 13: Single Sign-on with USG and Windows Platform
13.1 Application Scenario
When the employee’s PC is connected to the company’s network, usually he needs to login to the domain
first, and then login to the USG with the same username and password again, to pass the web
authentication before accessing the Internet and the company’s resources. With Single Sign-On agent
integrated with Microsoft Active Directory, the SSO Agent sends authentication information to the USG to
let users automatically get access to permitted resources. Users just need to login to the domain once and
have access to the Internet and company internal resources that they are authorized to access directly
without being prompted to login again.
13.2 Configuration Guide
Network conditions
WAN: 59.124.163.151
LAN 1: 192.168.1.0/255.255.255.0
Domain Controller (Windows Server 2008 R2): 192.168.1.34
Client’s laptop: 192.168.1.33
Goals to achieve
The user logs into the domain once and is able to access the Internet directly without specifying the
username and password in the web browser.
Domain Controller Configuration
To Next Page
Loading...
