Hi I have the next question.
We have implemented Two WSAs in HA and WCCP transparent mode and configured the rules with IP addresses, now we want to filter rules using AD users, and groups. I've read that in order to authenticate users transparently and without any prompts in the explorers we need to use TUI and a CDA agent.
I want to know if we need to configure every users' browser manually in order to have SSO and no prompts for users, if that it's true it would mean a huge workload for us.
And in this case, what Authentication scheme (Kerberos, NTLMSSP) is the recommended for HTTP and HTTPS traffic?
Please your help with this issue.
Hi Ken, thanks for your quick response.
I may have misunderstood the concepts of SSO and transparent authentication. So, what you say is that I don't have to configure browsers for SSO if I use CDA, but I do need to configure browsers to authenticate users to the WSA transparently? Please, give me more detail about these affirmations.