Virtual Secure Web Gateway

 View Only

  • 1.  SWG - NTLM/DCInterface problem

    Posted Oct 20, 2011 04:09 AM

    Dear All,

    my SWG (5.0.2) is configured in proxy mode with LDAP. After it we've tried both NTLM and DC Interface authentications for using policies based on AD groups run on a win2003 domain controller. If we login with a user on a PC what uses SWG as proxy first time it works. After it if we log off and login with a different user into the machine it isn't detected by the SWG, on SWGs configuration screen (search -> search by host) still the first user appairs for the machine. In my printscreen you can see the last login to PC 192.168.254.253 was yesterday 13:50 with user viktor (based on SWG), but that's incorrect, because I've logged into the PC with account Administrator Today 10:00.

    Any idea, what can be the problem?

    Thanks in advance!

    Viktor



  • 2.  RE: SWG - NTLM/DCInterface problem

    Posted Oct 20, 2011 10:55 AM

    What is the Sync Frequency set to under the LDAP Configuration?

     



  • 3.  RE: SWG - NTLM/DCInterface problem

    Posted Oct 21, 2011 06:57 AM

    The LDAP sync is 1hour, the NTLM authentication TTL is 1min.



  • 4.  RE: SWG - NTLM/DCInterface problem

    Posted Oct 24, 2011 09:36 AM

    Hopefully the 1 min setting is for testing only. NTLM Authentication of TTL of 1 is very low and could result in excess load on the SWG device.

     

    How much time is given in your testing between user1 logging off and user2 loggin in?

     



  • 5.  RE: SWG - NTLM/DCInterface problem
    Best Answer

    Posted Oct 24, 2011 09:56 AM

    You configure both NTLM and dcagent, try to disable ntlm, this worked for me.



  • 6.  RE: SWG - NTLM/DCInterface problem

    Posted Oct 25, 2011 03:04 AM

    Disabling NTLM solved the problem.