RE: [squid-users] Re: Issue with IIS Integrated Authentication

From: <Wayne.Fielder@dont-contact.us>
Date: Wed, 28 Jul 2004 15:18:26 -0400

Okay...so MS Integrated Authentication can't be proxied. Nit picking
question, if I'm not caching anything(only using squid for logging), does
your statement still apply?

-----Original Message-----
From: Adam Aube [mailto:aaube01@baker.edu]
Sent: Wednesday, July 28, 2004 2:54 PM
To: squid-users@squid-cache.org
Subject: [squid-users] Re: Issue with IIS Integrated Authentication

McDonald, Rob wrote:

> I have a box setup with Squid 2.5 STABLE and Dansguardian 2.6.1-3.
>
> I have Squid setup for transparent proxying..and I am redirecting all 80
> traffic to it in the DMZ via my openbsd 3.5 fw.
>
> We have an outside website that is IIS 6..and the SharePoint website uses
> windows integrated authentication. When you try to get to the page
> through the content filter/proxy it stalls, and stalls, and stalls, and
> eventually comes up with a 402.1 error

NTLM authentication (sometimes called Windows Integrated Authentication)
cannot be proxied. To make it work, you will need to completely bypass the
proxy server when accessing the SharePoint server.

Adam
Received on Wed Jul 28 2004 - 13:18:31 MDT

This archive was generated by hypermail pre-2.1.9 : Sun Aug 01 2004 - 12:00:03 MDT