Identity Awareness Software Blade is commonly enabled on a perimeter Security Gateway. It is frequently used in conjunction with Application Control Software Blade.
To protect internal data centers, Identity Awareness Software Blade can be enabled on an internal Security Gateway located in front of internal servers, such as data centers. This can be done in addition to the perimeter Security Gateway, but does not require a perimeter Security Gateway.
Identity Awareness can be deployed in Bridge mode or Route mode.
For redundancy, you can deploy a cluster of Identity Awareness Security Gateways in High Availability or Load Sharing modes.
If you deploy several Identity Awareness Security Gateways in your environment and configure them to share identity information. Common scenarios include:
You can have one or more Identity Awareness Gateways acquire identities and share them with the other Identity Awareness Gateways.
You can also share identities between Identity Awareness Gateways that are managed in different Multi-Domain Servers.