Showing results for 
Search instead for 
Did you mean: 

Allowing Non-Domain to bypass NTLM Authentication

Hi all,

Currently I have 2 MWG which is deployed in the transparent mode using WCCP. There is a requirement to allow endpoints which does not have NTLM to still make use of the proxy.

I made use of the the rule "Authentication Server(Time/IP based Session) and it is doing well for endpoints with a valid account with the domain. My question is how can I allow those endpoints without NLTM to bypass the authentication portion. Non-Domain users are prompt to key ID and password and on upon cancellcation, the user will be blocked from surfing.

Appreciate that anyone can shed some light regarding this matter.



1 Reply

Re: Allowing Non-Domain to bypass NTLM Authentication

Hi JM,

It sounds like you're looking for what we call "try auth". There is a discussion and a rule set for this in a transparent setup found here:


More McAfee Tools to Help You
  • How-to: Endpoint Removal Tool
  • Support: Endpoint Security
  • Visit: Business Service Portal
  • More: Search Knowledge Articles
  • ePolicy Orchestrator Support

    • Download the new ePolicy Orchestrator (ePO) Support Center Extension which simplifies ePO management and provides support resources directly in the console. Learn more about ePO Support Center