User Management
1005
SonicOS 5.8.1 Administrator Guide
How Does Single Sign-On Work?
SonicWALL SSO requires minimal administrator configuration and is transparent to the user.
SSO is triggered in the following situations:
• If firewall access rules requiring user authentication apply to traffic that is not incoming from
the WAN zone
• When no user groups are specified in access rules, but any of the following conditions exist,
SSO is triggered for all traffic on the zone (note - not just for traffic subject to these
conditions):
–
CFS is enabled on the zone and multiple CFS policies are set
–
IPS is enabled on the zone and there are IPS policies that require authentication
–
Anti-Spyware is enabled on the zone and there are Anti-Spyware policies that require
authentication
–
Application Control policies that require authentication apply to the source zone
–
Per-zone enforcement of SSO is set for the zone
The SSO user table is also used for user and group
identification needed by security services,
including Content Filtering, Intrusion Prevention, Anti-Spyware, and Application Control.