FAQ

How do you configure the ProxySG appliance to send BASIC username and password to upstream server or proxy?

FAQ ID:    FAQ1650
Version:    1.0
Status:    Published
Published date:    10/18/2011
 

Answer

SGOS 5.5.x Command Line Interface Reference
Page 320

#(config IWA realm_name) server-authentication {none | origin | proxy}

Enables/disables the forwarding of BASIC credentials of the authenticated user to the origin content
server or for proxy authentication. Flush the entries for a realm if the server-authentication value is
changed to ensure that the server-authentication value is immediately applied.

You can only choose one server-authentication method:
• If set to origin, BASIC credentials are forwarded to an upstream server.
• If set to proxy, BASIC credentials are forwarded to an upstream proxy.
• If set to none, forwarding BASIC credentials is disabled.
 

This only works when IWA realm is configured to support BASIC only; both NTLM and Kerberos must be disabled.

This same setting works for LDAP realm also.

The HTTP request sent from the ProxySG to the upstream server or proxy includes the username and password.
Authorization: Basic username:password(BASE64 encrypted)

https://bto.bluecoat.com/doc/12565


Rate this Page

Please take a moment to complete this form to help us better serve you.

Did this document help answer your question?
 
 
If you are finished providing feedback, please click the RATE CONTENT button. Otherwise, please add more detail in the following text box and then click RATE CONTENT.
 
 

Your response will be used to improve our document content.

Ask a Question