Some applications don't support NTLM authentication. The following is a list of applications that don't support authenticated proxies (NTLM Identification / NTLM Authentication / Proxy Authentication):
Application | Category | Knowledge base article |
Aveco A2C Exams Migration Application | Configuring Access to the Aveco A2C Exams Migration Application | |
Dropbox | Configuring Access to Dropbox with the Filter and Firewall | |
Google Drive Application | Configuring Access to Google Drive | |
iTunes | iTunes | Configuring Access to iTunes |
LogMeIn123rescue | Configuring Access to Logmein 123 | |
Microsoft Office | Software Updates | Configuring Access to Windows or Office 2010 Updates |
SAGE and HMRC Payroll Application | Configuring Access to Sage | |
Sophos Antivirus | Software Updates | Adding Sophos Antivirus to Your Filter's Exception List to Prevent a Slow Browsing Experience |
Windows updates | Software Updates | Configuring Access to Windows or Office 2010 Updates |
Adobe updates | Software Updates | Follow the procedure. |
AVG Antivirus | ||
Capita SIMS (Capita Broker / SIMS) | ||
Fronter A2C Exam Software | ||
GoToMyPC | ||
join.me | ||
MSN / Windows Messenger (Recommended alternative IM Client is called Pidgin) | ||
SkyDrive / OneDrive |
If the application listed above doesn't have its own article, follow these steps.
Procedure
- Create a custom category for the appropriate domains, see our help topic, Creating custom categories. Avoid using the category that the domain in question belongs to, as this may contains domains for other applications.
- Add the following to authentication exceptions, see our help topic, Creating authentication exceptions:
- The new custom category.
- SSL /CRL category.
- Software Updates category.
- Create an Allow web filter policy for the custom category, see our help topic, Creating web filter policies.
- Move the new policy to be above any block policies in the Web filter policies table, see our help topic, Managing web filter policies.
If you continue to experience issues, see our help topic, Monitoring user activity. You can filter the Web filter logs by the IP of a test client, attempt to open the site / application, and add the domains that appear in the web filter logs to the authentication exceptions.