A
PPENDIX
A: A
UTHENTICATION
O
PERATIONS
T
IER
3: S
ESSION
-
BASED
, W
EB
A
UTHENTICATION
M86 S
ECURITY
U
SER
G
UIDE
195
Tier 3: Session-based, Web Authentication
The diagram on the previous page (Fig. A-2) and steps
below describe the operations of the session-based authen-
tication process:
1. The user makes a Web request by entering a URL in his/
her browser window.
2. The Web Filter intercepts this request and sends the user
the Authentication Request Form, requesting the user to
log in with his/her login ID and password.
3. The Web Filter verifies the user’s information with the
authentication server (Domain Controller, Active Direc-
tory, LDAP, etc.).
4. A pop-up window opens on the user’s workstation while
the original window loads the requested URL. The user
will continue to be authenticated as long as the pop-up
window remains open.