Forum Discussion
F5 as Transparent HTTP Proxy + NTLM Auth
What is your end goal? Just to authenticate users via NTLM before they go out to the Internet? Do you have URL filtering requirements as well?
- AceDawg1Nov 21, 2016
Nimbostratus
Hi Michael,
The end goal is to simply auth users via NTLM before they go out to the Internet. There's a Palo Alto performing URL filtering, virus scanning, etc. If not, I would have looked at implementing SWG.
- Michael_KoyfmanNov 21, 2016
Cirrocumulus
In that case, you should setup your policy as Captive Portal per this description:
Essentially, your actual policy could almost remain the same, but you need to enable Captive Portal on your Access policy. Also, it may be a bit misleading, but also leave session identification as IP address instead of NTLM credentials, as for transparent portal, that is the only option that can work.
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com