AW: AW: [squid-users] Squid 3.3.8 NTLM problems

From: Manfred Mayer IT <>
Date: Tue, 17 Jun 2014 13:32:56 +0200


the user I enter for authentication is a on-domain user account. And basically it does work, because eventually, after hitting the "OK" button six times, I am successfully authenticated. I just can't figure out why this only happens on IE, with Firefox I enter the credentials once and everything works fine.
No, I'm testing with IE9, not 11.


-----Ursprüngliche Nachricht-----
Von: Amos Jeffries []
Gesendet: Dienstag, 17. Juni 2014 08:33
Betreff: Re: AW: [squid-users] Squid 3.3.8 NTLM problems

On 17/06/2014 5:45 p.m., Manfred Mayer IT wrote:
> Hello,
> thanks for your suggestions on the config, I changed the lines as you proposed. But I'm still having the issue with the multiple popups at first logon with IE. Do you have any idea to this?
> Thanks and regards
> Mana

It is worth being aware of several things:
* NTLM is a domain-based protocol, it can only be used with on-domain computers or user accounts.
* that NTLM protocol was officialy deprecated by MS back in 2006.
* that all MS software written since then has preferred Kerberos and at most allowed falback to NTLMv2.
* NTLMv2 is not able to be used by any non-domain machine.

So the problem is to find out why the non-domain machines are not correctly using Basic authentication (not having on-domain NTLM credentials to use).

BTW, is IE 11 being used or something older?


Email secured by [Rapunzel IT]

Rapunzel Naturkost GmbH, Rapunzelstraße 1, D-87764 Legau
Registergericht Memmingen HRB 14736 | Sitz der Gesellschaft: Legau
Ust Id Nr. DE 129088402
Geschäftsführer: Joseph Wilhelm | Margit Epple | Andreas Wenning
Telefon: +49 (0)8330 / 529 - 0
Received on Tue Jun 17 2014 - 11:33:09 MDT

This archive was generated by hypermail 2.2.0 : Tue Jun 17 2014 - 12:00:06 MDT