06-14-2004 06:13 AM - edited 03-09-2019 07:44 AM
Hi,
I've setup authentication proxy on a 7301 firewall - authentication is via TACACS+. When I point a browser to a device address behind the firewall, all I get is a blank screen, instead of my auth-proxy banner and login prompt. Internet explorer says it has reached the authentication proxy login page, and the following entry is in the auth-proxy cache:
Client IP 1.2.3.10 Port 1051, timeout 60, state HTTP_INIT
Does anyone have any ideas why the login screen will not display??
Many thanks
Liam Walker, CCNP
06-14-2004 06:34 AM
Are you running any ad blocking program on your pc? If so, it could be that it is blocking the popup required for user authentication.
One other idea is whether http or the https protocol is being used. If you are using https, it could be that your browser is rejecting the page due to cert validation failure.
What version of IE are you using?
06-14-2004 07:48 AM
Thanks for your reply.
The configuration I am using has worked at other locations, so I am just wondering if I have made a small mistake with my configuration at this particular site. The interface that auth-proxy is enabled on has the following config:
interface GigabitEthernet0/1
description uplink to Corporate-side
ip address 1.2.3.4 255.255.255.252
ip access-group Corp_INT in
ip auth-proxy LAB
no ip redirects
no ip unreachables
no ip proxy-arp
ip inspect CBAC out
duplex full
speed 1000
media-type gbic
negotiation auto
no cdp enable
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide