Hi Zoltan -
As long as you are using SOCKS v5 this is possible.
- NTLM, LDAP, etc, will work but note that NTLM needs to have “allow basic” enabled.
- Kerberos auth (GSS API) requires updating the keytab file to include a SPN for the RCMD service:
Follow the Kerberos setup guide in the community: https://community.mcafee.com/docs/DOC-2682
It is best to have a rule set specifically for SOCKS traffic, so it is isolated from normal traffic. Within this rule set is where authentication would occur. Attached is a template for SOCKs which uses NTLM authentication.
I hope in a future mcafee can support sftp or ftps natively
Thanks for your help! The basic authentication is working perfectly.
Could you tell me what is the RCMD service?
Thank you for the wonderful example rule set.
It is much more thorough than what I came up with and provides lot of tuning opportunities.