You can't know what the proxy wants, so you have to test all possible situations and pick the one that works As Maurizio said, some users have to add the domain and some not (on the same proxy!)
Paul ----- Original Message ----- From: "Tibor Csonka" <[EMAIL PROTECTED]> To: "ICS support mailing" <twsocket@elists.org> Sent: Friday, January 20, 2006 8:08 AM Subject: Re: [twsocket] NTLM authentication reloaded > Maybe we should include the '@' also as separator. > > Paul wrote: > >>Maurizio, >> >>different users can have different rights also. >> >>The only way I found sofar is detect a domain yourself >>and try all possible authentications possible and pick the >>one that succeeds. >> >>So if the user is in a domain, then try logon with >> >>username >>domain\username >>[EMAIL PROTECTED] >> >> >>Paul >> >> >>----- Original Message ----- >>From: "Maurizio Lotauro" <[EMAIL PROTECTED]> >>To: "ICS support mailing" <twsocket@elists.org> >>Sent: Friday, January 20, 2006 1:47 AM >>Subject: Re: [twsocket] NTLM authentication reloaded >> >> >> >> >>>Scrive Tibor Csonka <[EMAIL PROTECTED]>: >>> >>> >>> >>>>Hello list, >>>> >>>>I've just ran into a small bug in NTLM authentication from HttpCli. >>>>There is a possibility that the user enters the username as >>>>domain\username. >>>>In this case HttpCli will send the username and the domain as the >>>>username, wich is not working (at least on IIS 6). >>>> >>>> >>>[...] >>> >>> >>> >>>>The call, as you can see set the domain to empty string in all cases but >>>>if the user supplies the usernames in the manner I've mentioned before >>>>this is not correct. >>>> >>>> >>>[...] >>> >>> >>> >>>>I did this in the HTTP authentication part not in the proxy. >>>>Can somebody confirm that in case of NTLM proxies, should work the same >>>>way? >>>> >>>> >>>I have a "strange" situation. A customer use ISA server for proxy and has >>>enabled the NTLM authentication. To authenticate some user must include >>>the >>>domain (domain\username) and some other user must not include it (I mean, >>>if >>>they include the domain they will not authenticated). I don't have >>>investigated what is the difference between these users. >>>You have a similar situation with IIS? I mean, if you don't include the >>>domain >>>you will be authenticated? >>> >>> >>>Bye, Maurizio. >>> >>>---------------------------------------------------- >>>This mail has been sent using Alpikom webmail system >>>http://www.alpikom.it >>> >>>-- >>>To unsubscribe or change your settings for TWSocket mailing list >>>please goto http://www.elists.org/mailman/listinfo/twsocket >>>Visit our website at http://www.overbyte.be >>> >>> >>> >>> >> >> >> > -- > To unsubscribe or change your settings for TWSocket mailing list > please goto http://www.elists.org/mailman/listinfo/twsocket > Visit our website at http://www.overbyte.be > > -- To unsubscribe or change your settings for TWSocket mailing list please goto http://www.elists.org/mailman/listinfo/twsocket Visit our website at http://www.overbyte.be
