Active Directory authentication

Unanswered Question
Jun 3rd, 2008
User Badges:

Hi,
Just curious having this kind of setup..Two leg proxy...using the ;

P1 - internal IP

P2 - external IP

What should be the route on both interfaces..

Im using AD not LDAP for authenticating client to have access to the internet.

What do i use... NTLMSSP?

Is there someone out there who has this kind of setup?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
khoanguy Wed, 06/04/2008 - 18:23
User Badges:

The route for internal traffic P1 should be default gateway for internal clients.

The route for external traffic P2 should have default gateway to get out to Internet.

P1 and P2 should be on different subnets.

NTLMSSP for SSO (single sign on), which would be ideal since clients would not be prompted for authentications.

There are some setups using P1 and P2.

angfeglandagan Fri, 06/06/2008 - 06:49
User Badges:

One quick question, is NTLMSSP supported on Windows 2003 AD? for SSO?

Im tryin to search for any guides on the NTLMSSP under Windows 2003 environment.

regards,
kira

Doc_ironport Fri, 06/06/2008 - 17:16
User Badges:


One quick question, is NTLMSSP supported on Windows 2003 AD? for SSO?


Yes, it works fine under Windows 2003 AD, and gives full Single Sign-on (completely transparent to the user as long as they are logged into the domain).

Actions

This Discussion