Home

Content Sources

Index

Search
  Search Features
  Secure Search
    Access Control
    Head Requestor Deny Rules
    Policy ACLs
    Universal Login
    Universal Login Auth Mechanisms
      Cookie
      HTTP
      Client Certificate
      Kerberos
      SAML
      Connectors
      LDAP
    Universal Login Form Customization
    Flexible Authorization
    Trusted Applications
  Diagnostics

Reports

GSA Unification

GSAⁿ

Administration

More Information

Search > Secure Search >Trusted Applications

Use the Search > Secure Search >Trusted Applications page to perform the following tasks:

• Enabling trusted applications
• Adding trusted users or groups
• Editing trusted users or groups
• Deleting trusted users or groups
• Selecting the credential group for the authentication mechanism

About Trusted Applications

A trusted application is one that gets requests from a user's browser and sends the end user's search requests to the search appliance. By registering a trusted application on this page, you can enable the search appliance to receive pre-validated ids from the trusted application.

After a trusted application is registered, it can securely interact with the search appliance. Before sending a search request, the trusted application verifies the user. It only sends a search request after it successfully verifies the user.

When the trusted application sends a search request, it sends information about the end user's identity. With early binding authorization (security permissions are stored on the search appliance), the trusted application only needs to send the end user's ID in addition to self credentials. The search appliance only needs to authenticate the application. The end user is verified automatically. With late binding (security permissions are checked with content sources at serve time), the trusted application needs to send the end user's credentials, in addition to self credentials. The search appliance needs to authenticate both the application and the end user.

To register a trusted application with the search appliance, provide the information in the following table.

Take note that the trusted applications feature only supports basic authentication and cookie authentication.

Before Starting this Task

Before registering a trusted application, complete the tasks shown in the following table.

Enabling Trusted Applications

Trusted applications is disabled by default. To enable it, click Enable Trusted Applications. To disable it, clear the checkbox.

Adding Trusted Users or Groups

To add a trusted user or group:

1. Next to Trusted Users and Groups, click Add. 
2. Select User or Group from the pull-down menu.
3. Select a credential group from the pull-down menu.
4. Type a domain and name for the end user.
5. If the domain and name are case sensitive, click the Case Sensitive checkbox.
   
6. Click Save.

Editing Trusted Users or Groups

To edit a trusted user or group:

1. Under Trusted Users and Groups, click the row that you want to edit.
2. Make changes to the user or group.
3. Click Save.

Deleting Trusted Users or Groups

To delete a trusted user or group, click the trash icon in the row that you want to delete.

Selecting the Credential Group for the Authentication Mechanism

To select the credential group for the authentication mechanism:

1. Under Authentication Mechanism, select a Credential Group from the pull-down menu.
2. Click Save Authentication Mechanism.

For More Information

For more information about trusted applications, see "Managing Search for Controlled-Access Content," which is linked to the Google Search Appliance help center.