Configuring a transparent ProxySG or Advanced Secure Gateway (ASG) to successfully authenticate users using a HTTPS based virtual URL.
The high level steps to configuring a transparent ProxySG or Advanced Secure Gateway (ASG) to successfully authenticate users using a HTTPS based virtual URL are:
Create the keyring on the ProxySG or ASG
Create a certificate on the Microsoft PKI server
Import the certificate to the ProxySG or ASG
Create a new Service and Listener to intercept the redirected authentication requests.
Configure the authentication realm to use the virtual URL
Add policy to enable authentication
Verify that users are being authenticated
The recommendation is to set up the ProxySG to get its time from a reputable and reliable time source.
Assuming that the Authentication Realm on the ProxySG or ASG exists, add the virtual URL
To confirm that users are logging in correctly from the management console go to Statistics > Authentication select the appropriate realm or leave it blank and then click on either “Display by user” or “Display by IP” and you should see the users that have authenticated.