Restricted users fail to authenticate with NTLM

Documentation | Support

Go to the table of contents

Go to the previous page

Go to the next page

View or print as PDF

Content Gateway Troubleshooting : Restricted users fail to authenticate with NTLM

Restricted users fail to authenticate with NTLM

Content Gateway Troubleshooting | Forcepoint Web Security | v8.4.x, v8.5.x | 29-Apr-2022

When Content Gateway is configured to perform Legacy NTLM authentication with Active Directory, users who are restricted to a subset of workstations may not successfully authenticate.

The problem is due to the way Content Gateway establishes a session with the domain controller.

To work around the problem, in your Active Directory add a workstation named "TMP" and include it in the set of workstations available to the restricted users. TMP is the surrogate workstation name used by Content Gateway when establishing a session. TMP is used because, for security reasons, the actual workstation name is not provided by the browser in the authentication handshake.

Go to the table of contents

Go to the previous page

Go to the next page

View or print as PDF

Content Gateway Troubleshooting : Restricted users fail to authenticate with NTLM

Copyright 2022 Forcepoint. All rights reserved.