[
https://issues.apache.org/jira/browse/TS-1491?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Yakov Kopel updated TS-1491:
----------------------------
Attachment: (was: diff.patch)
> Browser always prompts for authentication (NTLM)
> ------------------------------------------------
>
> Key: TS-1491
> URL: https://issues.apache.org/jira/browse/TS-1491
> Project: Traffic Server
> Issue Type: Bug
> Components: Core
> Reporter: Yakov Kopel
> Assignee: Leif Hedstrom
> Fix For: 3.2.3
>
> Attachments: private.diff
>
> Original Estimate: 1h
> Remaining Estimate: 1h
>
> When the client surf through the ATS to a site of SharedPoint, the user get
> NTLM prompt message again and again.
> This is because of the reuse option that is turned on by default (u can turn
> it off with the proxy.config.http.share_server_sessions option).
> My attached patch turns on the private_session flag when the ATS gets auth
> connection, and then it will not use the reuse option for this connection.
> ----
> For further reading on this global bug in proxies:
> http://blogs.msdn.com/b/asiatech/archive/2012/03/28/ie-always-prompts-for-authentication-when-browsing-through-proxy-server.aspx
> Microsoft recommend at
> (http://technet.microsoft.com/en-us/library/cc995189.aspx):
> “we recommend that you use SSL encryption for the traffic between Forefront
> TMG and the client. NTLM authentication is per connection, and encryption
> prevents improper reuse of connections by legacy proxy devices on the
> Internet.”
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
