> Hello > > We have a squid proxy (Squid Cache: Version 2.5.STABLE9) on a > Linux server (Linux hostname_of_server 2.4.19 #1 Fri Oct 4 18:36:11 EDT > 2002 sparc64 GNU/Linux) which uses NTLM and Basic authentication > (in this order) for access control. > Web browsing w/ IE or Mozilla runs without any problem. > Unfortunately a few of our customers try to use java applets or > java applications which try to connect to the internet to. > The users are prompted for username, password and domain. This > means that NTLM scheme is used. > This window appears again and again. The logfile of squid reports > only 407 errors, but the credentials are correct. > To find out what's wrong I sniffed the network connection. > The only thing which looked strange to me was that the Java > application doesn't send "Proxy-Connection: Keep-Alive". Other > applications/browsers send this header information. > > Any ideas how to convice java to send this header or to > reconfigure squid to be able to auth java applications. > This has been discussed in the past. Basically if the JVM in the browser does not support inhereting of browser credential , you run into this issue. There is nothing you can do about this. Perhaps as a workaround. Configure the http access rules in such a manner that the java application can run unauthenticated w.r.t. the proxy. M.
