This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Transparent AD SSO Authentication URL

How to configure custom AD SSO Transparent AUthentication URL.
I don't want http://UTMName/auth....

I have custom DNS name for Proxy like
proxy.domain.local
and created SPNs for UTM user as proxy will be switched to Explicit mode at some time.
But till then, how to have Transparent auth with auth on HTTP://proxy.domain.local/auth?.....

This thread was automatically locked due to age.

0 Michael Dunn over 10 years ago

You can change to use the fqdn by doing
cc set http adsso_redirect_use_hostname 0

Change it to 1 to make it use hostname again.

Note: IE will not SSO (Single Sign On) silently if you are using a fqdn because they don't want to send out username and passwords to a potential internet site. Therefore they will prompt you to enter credentials. In IE you need to add the fqdn to the "Intranet Sites" or "Trusted Sites" in order to get unprompted logons. FF and other browsers have similar configurations.

The standard mode authentication uses the fqdn because browsers don't have that limitation.
Cancel
Vote Up 0 Vote Down

Cancel
0 Idriel over 10 years ago in reply to Michael Dunn

Tnx for this. For IE, Firefox etc… I know that I need to put in Trusted Zone or allow NTLM in FF.

But, how can I set FQDN manually.

I have 3 NIC’s. External Internal and NIC only for Proxy.

By default UTM uses it’s own FQDN that I don’t want to use, I want to use FQDN of Proxy NIC.
Cancel
Vote Up 0 Vote Down

Cancel