Managing Web Application Authentication Problems with Wavecrest Proxy Products

Wednesday, December 1st, 2010

In order to obtain usernames for filtering and/or reporting purposes in CyBlock Proxy, Cyfin Proxy, or CyBlock Appliance, authentication must be enabled. An issue that arises with authentication is that there are some Web apps and URLs/Domains that do not respond to the authentication request properly.  Because of this, in versions 6.2.0 and 8.2.0 we added the Authentication Manager in CyBlock Proxy, Cyfin Proxy and the CyBlock Appliance.

The Authentication Manager helps prevent these issues by automatically detecting the disruptions, identifying the failed applications, and employing automatic authentication-bypass techniques (when authentication is enabled in Moderate mode). This allows users to bypass proxy authentication (not the proxy server) with those web sites and web applications that do not properly respond to the proxy authentication request.  An example of this is your offensive line in a football game.  Just like your offensive line creates a hole for the running back to run through, bypass authentication opens a hole in the proxy so that the request can go through. The request will bypass authentication but not the proxy.

To learn more about proxy authentication and the Authentication Manager, read our document “Managing Web Application Authentication Problems” and see your product manual for specific instructions on fully utilizing the Authentication Manager.

New Releases: CyBlock 6.2.0 and Cyfin 8.2.0

Thursday, April 29th, 2010

New versions of CyBlock and Cyfin were recently released.  You can download the latest release by going to the Administration – Product Update screen. Below are a list of enhancements for each product.

CyBlock Proxy, Cyfin Proxy and CyBlock Appliance Enhancements

  • Proxy Server Authentication. New authentication options are now available on the Setup – Proxy screen.  Options include Strict, Moderate, and Disable (if disabled, IP addresses will be used).  The default setting is Moderate.  These options affect how bypass authentication is handled on the new Authentication Manager.
  • Authentication Manager. Complementing the new proxy server authentication options is the Authentication Manager. This screen allows the administrator to manage improperly authenticating URL/domains, web applications and user-agents. The Authentication Manager is located at Advanced Settings – Proxy Settings – Authentication Manager.
  • PAC File Configuration. This new screen allows for easy PAC file configuration that you can push out to all browsers. It is located at Advanced Settings – Proxy Settings – PAC File Configuration.
  • Product News. With this release, we have added the ability for administrators to get product news alerts via email.  This setting is found on the Administration – Product News – Setup page.  NOTE: The default setting is “Do not email.”

CyBlock ISA Enhancements & Updates

  • Forefront TMG Support. Support is now available for Microsoft Forefront TMG for both filtering and reporting.
  • Product News. With this release, we have added the ability for administrators to get product news alerts via email.  This setting is found on the Administration – Product News – Setup page.  NOTE: The default setting is “Do not email.”
  • ISA Server 2000 No Longer Supported. With this latest upgrade, there is no longer support for ISA Server 2000.

Cyfin Reporter Enhancements

  • New Logfile Support for the following:
    • Microsoft Forefront TMG Support
    • Watchguard Firebox 11 with Syslog
    • Astaro Security
  • Product News. With this release, we have added the ability for administrators to get product news alerts via email.  This setting is found on the Administration – Product News – Setup page.  NOTE: The default setting is “Do not email.”

Use the following links to access the full release notes for your Wavecrest product.

If you have any questions about any of the new features or upgrading, please contact Support.

Email: support@wavecrest.net
Phone (Toll-free): 877-442-9346, ext. 4 (U.S. and Canada)
Phone (Direct): 321-953-535, ext. 4