This may help - http://ntlmaps.sourceforge.net/ tried it with success (but not tested on a system with many users). user -> squid (child)-> ntlmaps (parent) -> NTLM website It will be great if this Python script can be rewritten into C and incorporated inside Squid -----Original Message----- From: Elsen Marc [mailto:elsen@xxxxxxx] Sent: Friday, February 04, 2005 1:26 AM To: bofh@xxxxxxxxxxxxxxxx; squid-users@xxxxxxxxxxxxxxx Subject: RE: [squid-users] Website Authentication > > We are using Squid as a proxy server on our campus. One of > the internal websites that our users use require NT > authentication. IE: When they reach the website, an > authentication box pops up and they sign on using their NT > domain password. This works if the users are not using the > proxy, but if they are using the proxy the login box does not appear. > > Any help would be appreciated. > > NTLM based auth can not be proxied trough http , as has been discussed many times on the list. Due to it's design flaws. You can : - have the webserver use standard auth mechanisms. - convert it to a https (ssl based) webserver which cloaks this problem, because then squid only becomes a data-linker so so speak between the browser and the secure based endpoint (webserver). M.
