Wanao - Jean DELAGOUTTE wrote: > Hello, > I'm using the proxy software SquidNT with plugin for NTLM > authentification. > > With Internet explorer, i don't have problem if i navigate with a > domain user, it don't ask login+password. if i navigate with a no > domain user, Internet explorer ask me a login+password for navigation.
A domain login is not mandatory for this to work. If there is an account with the same user name and password on a standalone server squid is running on as the user account executing IE it works as well, even Firefox works like that. When you sniff the communication with a protocol analizer such as wireshark you'll find that there's an automated NTLM authentication performed. The big question is: "How do they manage this?" It's AFAIK not documented how to get current user's password from Windows. > > All that to say that the proxy appears to be configured correctly. It does obviously not depend on the proxy server. > Now, with SSLhttpcli I must specify the proxy login+password even if > I run the application from an authenticated session on the domain. > > sslhttpcli does not retrieve the current authentication even if you No it doesn't. If someone wants to understand how that can be achieved I guess a look at FireFox's source code would help. So far the workaround is to store the password once when entered by the user for further use, useless to mention that should be stored as safe as possible. -- Arno Garrels -- To unsubscribe or change your settings for TWSocket mailing list please goto http://lists.elists.org/cgi-bin/mailman/listinfo/twsocket Visit our website at http://www.overbyte.be
