Search squid archive

RE: NTLM and transparent/interception confusion

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



That's too bad...  I've set up numerous Bluecoat proxies and they do
have this capability.  But of course, you're paying about $50k usd /
box.

-----Original Message-----
From: Guido Serassio [mailto:guido.serassio@xxxxxxxxxxxxxxxxx] 
Sent: Thursday, January 01, 2009 4:00 AM
To: Johnson, S; squid-users@xxxxxxxxxxxxxxx
Subject: Re:  NTLM and transparent/interception confusion

Hi,

At 20.06 31/12/2008, Johnson, S wrote:
>I've been doing a lot of reading on this...  I've got the proxy working
>in either of these two modes:
>1) As a browser configuration proxy
>2) with http_port 3128 transparent, in redirected mode
>
>I've got NTLM authentication working just fine with #1 above.  However,
>with #2 I never get a password prompt.  I don't really care about
>transparency; I just want to authenticate users that are outbound
>without having to configure their browser.
>
>I asked this question a couple of months back and there are people
>stating that they are doing the authentication with transparent mode.
>Some of the references I've found in my searches also seem to
>corroborate the possibility of this working (but it's not working for
>me).  However, in the documentation it seems that this should not be
>possible.  Am I barking up the wrong tree or is this truly possible?

You cannot.

Youa are mixing two very different and incompatible things:

- Transparent/intercepting proxy
- NTLM transparent (silent) authentication, also known as Windows 
integrated authentication
http://wiki.squid-cache.org/SquidFaq/InterceptionProxy#head-e56904dd4dfe
0e21e5c2903473c473d401533ac7

Regards and happy New Year

Guido



-
========================================================
Guido Serassio
Acme Consulting S.r.l. - Microsoft Certified Partner
Via Lucia Savarino, 1           10098 - Rivoli (TO) - ITALY
Tel. : +39.011.9530135  Fax. : +39.011.9781115
Email: guido.serassio@xxxxxxxxxxxxxxxxx
WWW: http://www.acmeconsulting.it/


-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.



[Index of Archives]     [Linux Audio Users]     [Samba]     [Big List of Linux Books]     [Linux USB]     [Yosemite News]

  Powered by Linux