RE: [squid-users] Error 401.2 with OWA

From: Mehdi Melhaa <[email protected]>
Date: Wed, 11 Dec 2002 17:10:08 +0100

Is there a solution to disable a specific ip from the squid in order "to
simulate"
a internet direct connection ?

Thanks,
Mehdi

-----Message d'origine-----
De : Henrik Nordstrom [mailto:hno@marasystems.com]
Envoy� : mardi 10 d�cembre 2002 12:27
� : Mehdi Melhaa
Cc : squid-users@squid-cache.org
Objet : RE: [squid-users] Error 401.2 with OWA

tis 2002-12-10 klockan 12.08 skrev Mehdi Melhaa:
> Hello Henrik,
>
> Thanks for your answer . You're right, the server only support the
> "Microsoft Integrated Logon" for security reason .
> I know that on Ms Proxy Server solution , you're need to install a client
to
> support it.

> Do you known if there is a patch or an other solution to use it without
> using internet direct connection .

You can reconfigure your OWA/IIS server to support "Plain Text"
authentication. Note that the use of SSL is strongly recommended in any
event to protect the user private data.

There is a patch to make Squid filter out "Microsoft Integrated Logon"
to make sure browsers do not get confused, mainly of interest when Squid
runs as a reverse proxy.

Another alternative is to use SSL and have the clients configured to use
your proxy server as proxy when talking via https to the OWA application
(proxy.pac can be used for flexible selection). This however requires
that the clients have direct connection to your proxy (cannot be behind
another proxy),.

Regards
Henrik
Received on Wed Dec 11 2002 - 09:16:02 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:12:02 MST