Modules overview sheet
The modules are used to interact with client requests to the Pointsharp Access Gateway. Depending on the module implementation, it can authenticate, authorize, change, or inspect the request.
To use the features of a module, you are required to create a configuration of the module, and to configure a proxy rule to use the created configuration.
Application types
Group of module configurations that is used to filter or authorize a request. A module in this group is specialized to perform an authorization, or to filter its traffic, for requests with a pre-defined application protocol.
- modAudit
-
-
Audit — send Audit information to Pointsharp ID Server for each authenticated user.
-
- modAuthorization
-
-
Web client authorization
-
- modEASv2
-
-
Exchange ActiveSync v2 (use in combination with modAuth)
-
- modResponse
-
-
HTTP Response
-
- modICAP
-
-
Internet Content Adaption Protocol
-
- modLync
-
-
Lync
-
- modOutlook
-
-
Outlook client authorization
-
- modLoginApp
-
-
Login App authentication (Pointsharp login app)
-
- modSkypeMeet
-
-
Skype meeting
-
Authentication
Group of module configurations that is used to authenticate a request. A module in this group is specialized to perform an authentication for an incoming request.
- modAuth
-
-
Authentication module
-
- modCertificate
-
-
Certificate based login
-
- modForms
-
-
This is the module that handles the login page for the Pointsharp Access Gateway
- modNTLMPassthrough
-
-
Used to manage NTLM-authentications towards back-end
-
- modSOAP
-
Simple Object Access Protocol (SOAP) Authentication:
-
SOAP Authentication for Lync Pool 1-5
-
SOAP Authentication for Skype Pool 1-2
-
Single sign-on
Group of module configurations that is used in combination to perform single sign-on.
A module in this group is specialized to perform a task when performing a single sign-on.
- modAuthenticationDelegation
-
-
By using username/password from modules (modAuth and modForms) this module can do Basic or NTLM authentication against back-end.
-
The module can create a Pointsharp SSO ticket (contains encrypted username and upn) which is sent to back-end.
-
The module can perform impersonation with Kerberos Constrained Delegation (KCD).
Other
A module in this group is specialized to perform a specific task defined by its implementation.
- modExtend
- modUtil
-
-
Header functions
-
- modicapEAS
-
-
ICAP EAS
-
- modEnrollment
-
-
Login enrollment
-
- modPasswordReset
-
-
Password Reset
-
- modPortal
-
-
Portal - landing page
-
- modRedirect
-
-
Redirect to Exchange Web Services (port 443)
-
Redirect to User Portal (port 443)
-
- modRP
-
-
Relying Party
-
- modRewrite
-
-
Rewrite
-
- modSignOut
-
-
Sign-out
-
- modUrlCookie
-
-
Configure creation and usage of URL Cookie.
-
TCP Server
TCP modules can be added for handling specific protocols.
- modIMAP
-
-
IMAP — Internet Message Access Protocol
-
- modLDAP
-
-
LDAP — Lightweight Directory Access Protocol
-
- modSMTP
-
-
SMTP — Simple Mail Transfer Protocol
-
| See also TCP Listeners and Proxy |