Have an account?
Need an account?
How to bypass authentication for specific user agents on Cisco Web Security Appliance (WSA)?Environment: Cisco Web Security appliance (WSA), All AsyncOS versions 7.x and above
Bypassing authentication for a particular application using its user agent, is a two step process.
Step 1: Determine the user agent string used by the application
1. For standard applications, you should be able to find the user agent string on the below websiteshttp://www.user-agents.org/http://www.useragentstring.com/pages/useragentstring.phphttp://www.infosyssec.com/infosyssec/security/useragentstrings.shtml
2. You could also determine the user agent string from access logs on the appliance. Please follow the steps below:
Example: For Chrome browser, you could see the user agent string as Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/525.13 (KHTML, like Gecko) Chrome/0.X.Y.Z Safari/525.13.)
Please note that the access policies would still filter (based on URL categories) and scan (Mcafee, Webroot) traffic as per the access policy setup.