How Does Single Sign-On Work?

SonicWall SSO requires minimal administrator configuration and is transparent to the user.

SSO is triggered in these situations:

• If firewall access rules requiring user authentication apply to traffic that is not incoming from the WAN zone
• When no user groups are specified in access rules, but any of the following conditions exist, SSO is triggered for all traffic on the zone and not just for traffic subject to these conditions:
  • CFS is enabled on the zone and multiple CFS policies are set
  • IPS is enabled on the zone and there are IPS policies that require authentication
  • Anti-Spyware is enabled on the zone and there are Anti-Spyware policies that require authentication
  • Application Control policies that require authentication apply to the source zone
  • Per-zone enforcement of SSO is set for the zone

The SSO user table is also used for user and group identification needed by security services, including Content Filtering, Intrusion Prevention, Anti-Spyware, and Application Control.

 

• SonicWall SSO Authentication Using the SSO Agent
• SonicWall SSO Authentication Using the Terminal Services Agent
• SonicWall SSO Authentication Using Browser NTLM Authentication