BlueCoat reverse proxy NTLM authentication
Posted
by
mathieu
on Server Fault
See other posts from Server Fault
or by mathieu
Published on 2009-10-13T09:48:01Z
Indexed on
2011/11/27
9:53 UTC
Read the original article
Hit count: 422
reverse-proxy
Currently when we want to access an internal site from Internet (IIS with NTLM auth), we have two login screens that appear :
- step1 : LDAPAuth, from the BlueCoat that check login/password validity against Active Directory
- step2 : NTLM auth, from our application.
Is it possible to configure the reverse proxy to use the LDAP credentials provided at step1, and give them to whatever application that requests them ? Of course, if those credentials aren't valid, nothing happens.
We're using BlueCoat SG400.
Update : we're not looking for SSO where the user doesn't have to enter a password. We want the user to enter his domain credentials in the LDAPAuth dialog box, and the proxy to reuse it to authenticate against our application. Or any application that uses NTLM. We've only got 1 AD domain behind the reverse proxy.
© Server Fault or respective owner