Hi there,
Question for you.
I have a policy setup in the www proxy server.
The recipient is rights are restricted by request.
There is a filter setup that the HTTP URL contains
"specific" websites.
When the user goes to www.mapquest.com
a windows username and password box comes up
for as an example:
connecting to a514.aol.akamai.net
The user has to put in their username and password
for several of these boxes or keep clicking cancel.
Then the website finally comes up.
I added a filter for akamai.net and the boxes still come up.
The problem is that they have to do this every time
they go to www.mapquest.com.
How can we stop this from happenning?
Thanks!
Ann[/url]
WWW Proxy server policy
Moderator: Qbik Staff
4 posts
• Page 1 of 1
WWW Proxy server policy
by Ann » Aug 05 06 7:12 am
- Ann
- Posts: 38
- Joined: Feb 20 04 5:54 am
- Location: U.S.
by adrien » Aug 05 06 5:50 pm
Hi
I take it that this is using authentication in WinGate's web proxy, with transparent proxy / intercepted connections?
When a browser is configured to connect out through NAT, and you intercept connections and force authentication, then the browser won't try to use the same credentials it used for one site on another subsequent one. So each time it gets an authentication challenge for a new site, it pops up the login dialog. Some pages include images and parts off many different sites, so loading a single page can cause a browser to display many login dialogs.
there are 2 options to get around this.
1. Configure the browsers to use a proxy. When the browser knows it's talking to a proxy, then it knows that when the proxy challenges it for authentication, it is actually authenticating to the proxy, so can re-use the credentials.
2. Specify that the browser always log in automatically with the current credentials. This one only works for NTLM logins where you are using the Windows user database in WinGate.
Regards
Adrien
I take it that this is using authentication in WinGate's web proxy, with transparent proxy / intercepted connections?
When a browser is configured to connect out through NAT, and you intercept connections and force authentication, then the browser won't try to use the same credentials it used for one site on another subsequent one. So each time it gets an authentication challenge for a new site, it pops up the login dialog. Some pages include images and parts off many different sites, so loading a single page can cause a browser to display many login dialogs.
there are 2 options to get around this.
1. Configure the browsers to use a proxy. When the browser knows it's talking to a proxy, then it knows that when the proxy challenges it for authentication, it is actually authenticating to the proxy, so can re-use the credentials.
2. Specify that the browser always log in automatically with the current credentials. This one only works for NTLM logins where you are using the Windows user database in WinGate.
Regards
Adrien
- adrien
- Qbik Staff
- Posts: 5448
- Joined: Sep 03 03 2:54 pm
- Location: Auckland
by adrien » Aug 08 06 11:39 am
Hi
For secure access through the proxy, you specify the same IP and port in the proxy configuration as you do for normal HTTP access.
Or you can leave it blank and use NAT for this (which is generally more reliable).
Which version of WinGate are you using? We had some problems with authenticated secure access through the WWW proxy in an earlier version - not exactly sure which one.
Adrien
For secure access through the proxy, you specify the same IP and port in the proxy configuration as you do for normal HTTP access.
Or you can leave it blank and use NAT for this (which is generally more reliable).
Which version of WinGate are you using? We had some problems with authenticated secure access through the WWW proxy in an earlier version - not exactly sure which one.
Adrien
- adrien
- Qbik Staff
- Posts: 5448
- Joined: Sep 03 03 2:54 pm
- Location: Auckland
4 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 6 guests