cancel
Showing results for 
Search instead for 
Did you mean: 
stedster
Level 7

Add more NTLM Domains for Authentication

Jump to solution

Hi,

out web gateways are members of several domains that I now need to add to authentication.

I use the default "Direct Proxy Aithentication and Authorization" rule set. When I just add a second "Authenticate with User Database" rule and use the other domain as user database, the users will not be able to authenticate anymore. This is because, in my understanding, the MWG would try to look for the user in both (or more) domains.

So what is the best way to allow Authentication for users from another Domain (which has no relationship to the other domain)?

I couldn't find anything on this in the community...

Thanks

stephan

0 Kudos
1 Solution

Accepted Solutions
McAfee Employee

Re: Add more NTLM Domains for Authentication

Jump to solution

Hi Stephan,

You do not need to adjust your rules. The rules are the means to authenticate the user against all the domains MWG is apart of.

So you do not need multiple rules if you have mulitple domains.

https://community.mcafee.com/docs/DOC-4918

https://community.mcafee.com/docs/DOC-4384

Best,

Jon

0 Kudos
2 Replies
McAfee Employee

Re: Add more NTLM Domains for Authentication

Jump to solution

Hi Stephan,

You do not need to adjust your rules. The rules are the means to authenticate the user against all the domains MWG is apart of.

So you do not need multiple rules if you have mulitple domains.

https://community.mcafee.com/docs/DOC-4918

https://community.mcafee.com/docs/DOC-4384

Best,

Jon

0 Kudos
stedster
Level 7

Re: Add more NTLM Domains for Authentication

Jump to solution

Hi Jon,

okay, I think was confused by having to set the "Authenticate with User Database" setting where you select NTLM and choose only a Default Domain. I thought I need to tell the MWG to try all Domains specifically.

I didn't see that this would automatically try all NTLM realms...

Thanks!

stephan

0 Kudos