Hello All, I recently took over the support of a couple SA4500s. After looking over the current configuration, I found the previous administrator created a lot of different user realms. Truthfully, I'm not sure of the reason... sign-in policies and pre-auth checks are the same on all realms. Anyway, I was thinking of consolidating all different user realms into one in order to simplify administration. Then, instead of configuring a new sign-in policy, user realm and role each time someone I need to configure a new portal page, I can just configure a new user role and assign it to the consolidated user realm. From your experience, is this the way to go? Or should I just leave it alone? Also, is there are really a difference between pre-auth host checks on the user realm and post-auth host checks on the role? Finally, does anyone know of a best practices guide?
... View more