[ https://issues.apache.org/jira/browse/TS-1491?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13492275#comment-13492275 ]
Yakov Kopel edited comment on TS-1491 at 11/7/12 11:16 AM: ----------------------------------------------------------- attaching my final NTLM fix (cannot find the ASF checkbox) was (Author: kopely): attaching my final NTLM fix > Browser always prompts for authentication (NTLM) > ------------------------------------------------ > > Key: TS-1491 > URL: https://issues.apache.org/jira/browse/TS-1491 > Project: Traffic Server > Issue Type: Bug > Components: Core > Reporter: Yakov Kopel > Assignee: Leif Hedstrom > Fix For: 3.2.3 > > Attachments: private.diff > > Original Estimate: 1h > Remaining Estimate: 1h > > When the client surf through the ATS to a site of SharedPoint, the user get > NTLM prompt message again and again. > This is because of the reuse option that is turned on by default (u can turn > it off with the proxy.config.http.share_server_sessions option). > My attached patch turns on the private_session flag when the ATS gets auth > connection, and then it will not use the reuse option for this connection. > ---- > For further reading on this global bug in proxies: > http://blogs.msdn.com/b/asiatech/archive/2012/03/28/ie-always-prompts-for-authentication-when-browsing-through-proxy-server.aspx > Microsoft recommend at > (http://technet.microsoft.com/en-us/library/cc995189.aspx): > “we recommend that you use SSL encryption for the traffic between Forefront > TMG and the client. NTLM authentication is per connection, and encryption > prevents improper reuse of connections by legacy proxy devices on the > Internet.” -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira