How to create a dedicated port for Smartphones in order to avoid NTLM authentication ?


When using Artica proxy With Active Directory, the proxy deny any browser that are not connected to the Windows domain.
Smartphones, tablets cannot be connected to the Windows Active Directory.
This Article help you to create a dedicated port that can be used only for these nodes.

  • On the “Listen ports“, create a new port.
  • Just turn on the Disable Authentication option.
  • Apply ports settings in the main table.

18-09-2015 00-56-01

Connecting browsers to this port force the proxy to allow any browser without authentication.
The main issue is everyone can be connected.

  • Solution is to restrict access to only browsers installed on Smartphones or tablets.
  • Open the Complete ACLs link.
Complete Acls Link

Your proxy: Complete acl

Create a new rule and on the rule select the port with no authentication option enabled

Choose Deny access option

18-09-2015 01-00-52

  • Choose Objects tab and create a new proxy object
  • Give the object name and select “Smartphones” in the drop-down list.
  • Click on Add

18-09-2015 01-03-04

  • Click on “Reverse” checkbox for the Smartphones object.

18-09-2015 01-06-19

  • Compile your ACL rules.

With this rule browsers that are not running on Smartphones are denied by the proxy.

18-09-2015 01-04-56

 

Leave a comment