Athena SWG (Secure Web Gateway)

Athena SWG (formerly Internet Access Gateway) ensures visibility and control across the network, detecting risks like unauthorized access, non-compliant activities, and data leaks to manage endpoints.

13.0.120

{{item.code}}

User Manual

IAG Installation

IAG Console

Web Login

Configuration

Functions

Value-Added Services

Sangfor Business Intelligence

Internet Access Analytics

Bandwidth Analytics

Electricity Waste Analytics

Real-Time Status

Real-Time Status

Proxy

Access Management

Working Principle

802.1X Authentication

Authentication

Endpoint Check

Ingress Client Settings

Online Activities

Access Control

Advanced

Bandwidth Management

Quota Control

Link Load Balancing

Activity Audit

Internet Access Audit

Ingress Client Audit

Endpoint Management

Endpoint Connection Control

Security Capabilities Configuration

Connect IAG to Endpoint Secure

Endpoint Connection Control Case Study

Internet Security

System

Object

Network

Sangfor VPN

Firewall

General

Diagnostics

Use Cases

SSO Configuration

SSO Configuration for the AD Domain

Proxy SSO Configuration

SMS Authentication

Send SMS Through an SMS Modem

Endpoint Device Management Configuration

Comprehensive Configuration

SNMP Trap Configuration

Basic Configuration

Enable Email Alert

Testing Procedure

Test with the MIB Browser Tool

Testing Results

International Bandwidth Configuration

Athena SWG (Secure Web Gateway)

User Manual

Use Cases

SSO Configuration

Configuration of SSO Implementation with Third-Party Devices

Devices Supporting the HTTP SSO Interface

{{sendMatomoQuery("Athena SWG (Secure Web Gateway)","Devices Supporting the HTTP SSO Interface")}}

Devices Supporting the HTTP SSO Interface

{{ $t('productDocDetail.updateTime') }}: 2025-12-29

The HTTP SSO interface provided by the device can provide the SSO function based on the HTTP/HTTPS protocol and GET method for any third-party devices.

The data flow is as follows:

A PC accesses the web authentication server through HTTP/HTTPS and logs in to or logs out of the server.

The login/logout page of the server is configured to notify the IAG to log in or log out of the related user, which achieves SSO. After the IAG authenticates the PC, it can access the Internet. The procedure is as follows:

Step 1.Set the authentication policy. Navigate to Access Mgt > Authentication > Web Authentication > Authentication Policy and click Add to set the authentication policy according to the IP or MAC addresses of the users who require SSO.

Step 2.Choose Access Mgt > Authentication > Web Authentication > Single Sign On SSO > Third-Party Server and perform configuration.

Select Enable API for SSO using HTTP request and set the IP addresses of the devices accessible to the interface.

Step 3.Click Download Sample, which includes Logon.js and Logon.html. Modify Logon.html and configure the web authentication server.

Step 4.When a PC logs in to or out of the HTTP/HTTPS server, it is logged in or out on the IAG.

1. The HTTP SSO interface is suitable for implementing SSO with Dr. COM's charging management systems. It can work with other web authentication systems, but secondary web server development is required to implement SSO.

2. If this function is not required, do not select Enable HTTP SSO Interface.

{{ $t('index.defaultHeader.logo') }}

Athena SWG (Secure Web Gateway)

Devices Supporting the HTTP SSO Interface