BlueCoat reverse proxy NTLM authentication

Posted by mathieu on Server Fault See other posts from Server Fault or by mathieu
Published on 2009-10-13T09:48:01Z Indexed on 2010/03/22 22:01 UTC
Read the original article Hit count: 490

Filed under:
|

Currently when we want to access an internal site from Internet (IIS with NTLM auth), we have two login screens that appear :

  • step1 : LDAPAuth, from the BlueCoat that check login/password validity against Active Directory
  • step2 : NTLM auth, from our application.

Is it possible to configure the reverse proxy to use the LDAP credentials provided at step1, and give them to whatever application that requests them ? Of course, if those credentials aren't valid, nothing happens.

We're using BlueCoat SG400.

Update : we're not looking for SSO where the user doesn't have to enter a password. We want the user to enter his domain credentials in the LDAPAuth dialog box, and the proxy to reuse it to authenticate against our application. Or any application that uses NTLM. We've only got 1 AD domain behind the reverse proxy.

© Server Fault or respective owner

Related posts about bluecoat

Related posts about reverse-proxy