Proxy Authentication

Next: Proxy Privacy Settings Up: Internet Acceleration and Management Previous: New SOCKS Rule Contents

Proxy Authentication

Enabling the Proxy Authentication option will require each user to enter in a user name and password before they will be allowed to access the web. If Proxy Authentication is enabled there are four options to choose from.

$\includegraphics{images/Proxy-auth_none.eps}$

No Authentication: disables all proxy authentication and allows any internal user to use the proxy server.

$\includegraphics{images/Proxy-auth_NTLM.eps}$

NTLM Authentication: Users must authenticate themselves against a remote Windows PDC. You must enter the name of your Windows domain, and optionally the name of a Windows group of which the users must be a member in order to be authenticated.

[NOTE:]Please note that you must have Winbind (in the Windows File Sharing module) enabled and configured before this scheme is usable.

$\includegraphics{images/Proxy-auth_win.eps}$

Basic Windows Authentication: attempts to authenticate against the SMB domain you enter in the text box. To configure this on the Windows end you must create a file named 'proxyauth' and store it in the login share which contains the word "allow." If a user is authorized to log into this domain then they will be able to read this file and access will be granted. If they are unauthorized then the login will fail and proxy access will be denied.

$\includegraphics{images/Proxy-auth_local.eps}$

Local Authentication: uses the local username/password database to perform authentication. This is nice because users can change their proxy passwords via WebTool User Manager.

$\includegraphics{images/Proxy-auth_ldap.eps}$

LDAP Authentication

allows the proxy server to authenticate a user by accessing an LDAP server. An LDAP server must be already configured. For the proxy server to authenticate with LDAP each user's LDAP entry must contain a username, either defined by 'cn' or 'uid' and a 'userPassword' must be set.

LDAP Server: This will contain the address of the LDAP server.
Username DN Attribute: The username attribute is defined here. Generally the username will be defined by either 'cn' (CommonName) or 'uid' (UserID).
Base DN: This is the top level Distinguished Name the proxy server will use to start it's searches at when looking up user entries.
DN to Bind to: The proxy server requires a Distinguished Name to bind to regardless if a password is required.
DN Password: This is the password associated with the DN that is being bound to.

Next: Proxy Privacy Settings Up: Internet Acceleration and Management Previous: New SOCKS Rule Contents

docs@guardiandigital.com 2003-09-09