Anonymous Authentication Schemes

The Anonymous authentication scheme provides access privileges to users who are not yet identified in your network. Assigning an anonymous authentication scheme to a realm does not provide access control, but it does allow personalized content for the user.
sm1252sp1
The Anonymous authentication scheme provides access privileges to users who are not yet identified in your network. Assigning an anonymous authentication scheme to a realm does not provide access control, but it does allow personalized content for the user.
When a user accesses a resource in a realm that uses the anonymous scheme, the Policy Server assigns a Global Unique Identifier (GUID). This GUID is stored on the  browser and provides a method for identifying the anonymous user.
When you create an Anonymous authentication scheme, specify a guest distinguished name (DN). You can bind policies to this guest DN that provide personalized content.
Personalized content in a realm protected by an Anonymous scheme is based on the guest DN, not the GUID of the user. Anonymous users view content according to policies that include the guest DN. Identified users have a distinct DN, so an identified user who accesses the same resource (protected by an anonymous scheme) views the content of the resource that is based on their unique DN rather than the guest DN.
2
Anonymous Scheme Prerequisites
Verify that the following prerequisites are met before configuring an anonymous authentication scheme:
  • A guest DN for anonymous user exists in a user directory.
  • A directory connection exists between the Policy Server and the user directory.
  • To track users according to GUIDs assigned by Anonymous authentication, enable user tracking on the Global Settings pane of the Administrative UI.
Configure an Anonymous Authentication Scheme
You can use an Anonymous authentication scheme to give non-registered users access to specific Web content.
sm1252sp1
The following procedure assumes that you are creating an object. You can also copy the properties of an existing object to create an object. For more information, see Duplicate Policy Server Objects.
sm1252sp1
Follow these steps:
  1. Click Infrastructure, Authentication.
  2. Click Authentication Schemes.
  3. Click Create Authentication Scheme.
    Verify that the Create a new object of type Authentication Scheme is selected.
  4. Click OK.
  1. Enter a name and a protection level.
  2. Select Anonymous Template from the Authentication Scheme Type list.
  3. Enter the DN of a user.
  4. Click Submit.
    The authentication scheme is saved and can be assigned to a realm.