Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2671
Views
0
Helpful
2
Replies

SSL VPN http-proxy TMG authentication failed

budi.satriawan
Level 1
Level 1

‎07-03-2012 01:22 AM

Hi, we have ASA 5520 as SSL VPN concentrator so users can access internal web from outside. Our internal web also has several internet URL. What we want is when user click internet URL in our internal web, ASA forward those request to internal proxy server. I already config proxy using port 8080 and username "company\user" and password, but always have authentication failed on ssl vpn browser. We uses forefront TMG as proxy. Username and password have right to access Internet.

Labels:
0 Helpful
2 Replies 2

ja raju
Level 1
Level 1

‎07-05-2012 01:08 AM

I had the same issue when trying to use Cisco SSL VPN through the TMG proxy server. We resolved it by allowing anonymous access on HTTPS to the external IP.

0 Helpful

budi.satriawan
Level 1
Level 1
In response to ja raju

‎07-06-2012 08:26 PM

I think, using http-proxy option ASA can only use basic authentication (clear text). Since TMG authentication set to NTLM, so it failed. When I try with CCProxy, ASA can authenticate dan get internet connection. So we allow ASA ip address without authentication on TMG. It's little bit strange because ASA support NTLM authentication when use sso.

Thx.

0 Helpful
Customers Also Viewed These Support Documents