Why does the CLI supporting HTTP for authentication proxy remain on the device after I unassign the policy?
A. IOS devices require that HTTP be used as the traffic type for authentication proxy, which generates the command ip http server. Security Manager does not remove the CLI after you unassign the authentication proxy policy from the device in Security Manager. If you do not require HTTP access for other purposes to the IOS device, you can manually remove the CLI or create a FlexConfig object to remove the CLI from the device.
Related Questions
- Even if the policy deployment on the device displayed the status as Completed (in the Completed Jobs page), the device CLI does not reflect the deployed policy. What can be the reason?
- Does anyone have NFUSE over HTTP PROXY with NTLM Authentication working?
- How can I manually configure the HTTP proxy of the web shield?