This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Proxy not reporting deny or deny through non auth

Hi

Having a problem which is becoming a bit of a pain.

We run the web proxy with SSO. This works fine with our kerberos domain.

Some web applications (ie citrix desktop) though still try to use NTLM to login to the proxy (which is not allowed because of the SSO) this is fine because I would expect to be able to see this deny inthe logs from what machine trying to go where ever BUT I cannot see these DENY's anywhere in the log so I am unable to create an exception rule for the exact URL.

Can anyone shed any light?

ta.

This thread was automatically locked due to age.

Parents

0 BAlfson over 14 years ago

Paul, I don't think they're being denied, just "eaten." [;)] That is, I don't think the issue is authenticating to the proxy, as that's what an exception could address - I think you're already authenticated by the Proxy.

In my experience, you have to avoid the HTTP/S Proxy for Citrix. If you're in an SSO mode, then that means you can't use the 'Transparent mode skiplist'.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BAlfson over 14 years ago

Paul, I don't think they're being denied, just "eaten." [;)] That is, I don't think the issue is authenticating to the proxy, as that's what an exception could address - I think you're already authenticated by the Proxy.

In my experience, you have to avoid the HTTP/S Proxy for Citrix. If you're in an SSO mode, then that means you can't use the 'Transparent mode skiplist'.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data