Yakov Kopel created TS-1491:
-------------------------------
Summary: Browser always prompts for authentication (NTLM)
Key: TS-1491
URL: https://issues.apache.org/jira/browse/TS-1491
Project: Traffic Server
Issue Type: Bug
Components: Core
Reporter: Yakov Kopel
Fix For: 3.3.3
When the client surf through the ATS to a site of SharedPoint, the user get
NTLM prompt message again and again.
This is because of the reuse option that is turned on by default (u can turn it
off with the proxy.config.http.share_server_sessions option).
My attached patch turns on the private_session flag when the ATS gets auth
connection, and then it will not use the reuse option for this connection.
----
For further reading on this global bug in proxies:
http://blogs.msdn.com/b/asiatech/archive/2012/03/28/ie-always-prompts-for-authentication-when-browsing-through-proxy-server.aspx
Microsoft recommend at
(http://technet.microsoft.com/en-us/library/cc995189.aspx):
“we recommend that you use SSL encryption for the traffic between Forefront TMG
and the client. NTLM authentication is per connection, and encryption prevents
improper reuse of connections by legacy proxy devices on the Internet.”
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
