[prev in list] [next in list] [prev in thread] [next in thread] 

List:       squid-users
Subject:    Re: [squid-users] NTLM and transparent/interception confusion
From:       Matus UHLAR - fantomas <uhlar () fantomas ! sk>
Date:       2008-12-31 19:16:09
Message-ID: 20081231191609.GA24764 () fantomas ! sk
[Download RAW message or body]

On 31.12.08 13:06, Johnson, S wrote:
> I've been doing a lot of reading on this...  I've got the proxy working
> in either of these two modes:
> 1) As a browser configuration proxy
> 2) with http_port 3128 transparent, in redirected mode
> 
> I've got NTLM authentication working just fine with #1 above.  However,
> with #2 I never get a password prompt.  I don't really care about
> transparency; I just want to authenticate users that are outbound
> without having to configure their browser.

configure WPAD (aka proxy autoconfiguration) then.

It's principially impossible to have browser log to the proxy, when browser
thinks there's no proxy...

> I asked this question a couple of months back and there are people
> stating that they are doing the authentication with transparent mode.

proxy can get some login info from third party, e.g. domain controller, that
tells it who's logged on the particular machine. Browser won't do it as
described above.

-- 
Matus UHLAR - fantomas, uhlar@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Fucking windows! Bring Bill Gates! (Southpark the movie)
[prev in list] [next in list] [prev in thread] [next in thread]