[squid-users] Forwarding NTLM to BasicAuthentication
Hi All. I have following problem to solve. Please help me. I have some UTM solution witch working as proxy (AV+CF+IP) and its bind to LDAP server. Unfortunately this solution don’t supporting LDAP/NTLM authentication, only basic authentication. My idea is to build additional proxy (squid) witch can take authorization data from Windows client via NTLM and forward it to UTM. It’s possible? If not, maybe you have other (bather) proposition. Thanks from top. -- View this message in context: http://www.nabble.com/Forwarding-NTLM-to-BasicAuthentication-tp17773575p17773575.html Sent from the Squid - Users mailing list archive at Nabble.com.
Re: [squid-users] Forwarding NTLM to BasicAuthentication
On ons, 2008-06-11 at 02:29 -0700, a.s.d wrote: My idea is to build additional proxy (squid) witch can take authorization data from Windows client via NTLM and forward it to UTM. Squid can do this, but only by sending a fake password. It does not have access to the users actual password when using NTLM (only GINA on the client workstation has knowledge of the users actutal password when using NTLM... (not even the domain controller knows..) See the login= cache_peer option for the available choices on how to forward the authenticated user name to peer proxies. Regards Henrik signature.asc Description: This is a digitally signed message part
