Showing results for 
Search instead for 
Did you mean: 

Allowing Non-Domain to bypass NTLM Authentication

Hi all,

Currently I have 2 MWG which is deployed in the transparent mode using WCCP. There is a requirement to allow endpoints which does not have NTLM to still make use of the proxy.

I made use of the the rule "Authentication Server(Time/IP based Session) and it is doing well for endpoints with a valid account with the domain. My question is how can I allow those endpoints without NLTM to bypass the authentication portion. Non-Domain users are prompt to key ID and password and on upon cancellcation, the user will be blocked from surfing.

Appreciate that anyone can shed some light regarding this matter.



1 Reply

Re: Allowing Non-Domain to bypass NTLM Authentication

Hi JM,

It sounds like you're looking for what we call "try auth". There is a discussion and a rule set for this in a transparent setup found here:


More McAfee Tools to Help You
  • Subscription Service Notification (SNS)
  • How-to: Endpoint Removal Tool
  • Support: Endpoint Security
  • eSupport: Policy Orchestrator
  • Community Help Hub

      New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

    • Find Forum FAQs
    • Learn How to Earn Badges
    • Ask for Help
    Go to Community Help

    Join the Community

      Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

    • Get helpful solutions from McAfee experts.
    • Stay connected to product conversations that matter to you.
    • Participate in product groups led by McAfee employees.
    Join the Community
    Join the Community