Reverse Authentication

On the Webserver Protection > Reverse Authentication pages, you can define how to use the Web Application Firewall to authenticate users directly instead of leaving the authentication to the real webservers. Via authentication profiles, the reverse authentication can be used to assign specific authentication settings to each site path route.

An authentication profile is basically defined by two authentication modes: the authentication mode used between users and the WAF and the authentication mode used between the WAF and the real webservers. Thus, even if a real webserver does not support authentication, the WAF can enforce authentication of the users. On the other hand, reverse authentication ensures that users only have to authenticate once, even if more than one real webserver is assigned to the respective virtual webserver.

Using forms for user authentication, you can specify company-specific form templates.