Yakov Kopel created TS-1491: ------------------------------- Summary: Browser always prompts for authentication (NTLM) Key: TS-1491 URL: https://issues.apache.org/jira/browse/TS-1491 Project: Traffic Server Issue Type: Bug Components: Core Reporter: Yakov Kopel Fix For: 3.3.3
When the client surf through the ATS to a site of SharedPoint, the user get NTLM prompt message again and again. This is because of the reuse option that is turned on by default (u can turn it off with the proxy.config.http.share_server_sessions option). My attached patch turns on the private_session flag when the ATS gets auth connection, and then it will not use the reuse option for this connection. ---- For further reading on this global bug in proxies: http://blogs.msdn.com/b/asiatech/archive/2012/03/28/ie-always-prompts-for-authentication-when-browsing-through-proxy-server.aspx Microsoft recommend at (http://technet.microsoft.com/en-us/library/cc995189.aspx): “we recommend that you use SSL encryption for the traffic between Forefront TMG and the client. NTLM authentication is per connection, and encryption prevents improper reuse of connections by legacy proxy devices on the Internet.” -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira