TM
NTLM Authentication
What is NTLM Authentication?
NTLM is a Microsoft-proprietary protocol that authenticates users and computers based on an authentication challenge and response. When an NTLM realm is used, and a resource is requested from the SG Series appliance, our appliance contacts the user or computer's account domain to verify identity, then requests an access token. The access token is generated by the domain controller and passed to (and if valid, accepted by) the Accelerator. Refer to Microsofts Web site for detailed information about the NTLM protocol and a list of Microsoft operating system versions that support NTLM. The advantage of NTLM authentication is that it provides a single sign-on solution for Internet Explorer users who are already logged in to a domain.
The Blue Coat SG Series appliance offers the capability to authenticate users defined in a NTLM database thereby utilizing your existing authentication process through the Blue Coat appliance. This enables an administrator to know who is accessing network resources and to define user/group-based policy along with all the other Blue Coat features.
Technical Brief
NTLM Authentication
Installing the Blue Coat NTLM Authentication Agent Service. (CAASNT) 1. Copy the files caasnt.exe and caasnt.ini to the %SystemRoot%\system32 directory of the computer used to administer the Accelerator. 2. Install the CAASNT service by opening a command window, switching to the %SystemRoot%\system32 directory, and typing caasnt /install 3. View the Services Application Event Log via the Windows Server Administrator Tools and validate that the CAASNT Service is running.
1. To view the event log, right click on My Computer and choose Manage. The Computer Management window is displayed. 2. Choose System Tools, Event Viewer, and then Application. When the CAASNT service has started it will log an informational message to the Event Log indicating so.
3. Right-click on CASSNT and choose Properties to manage the service. For example, to make CASSNT start only manually, set the Startup Type to Manual. (Automatic is the default setting.)
Technical Brief
NTLM Authentication
Step 2 Create an NTLM Realm
Create a realm using the Blue Coat GUI Management Console, select the Security option. Select the Realms tab.
1. Click the New button. The Add Realm dialog is displayed. Type in NTLM as the Realm name; select NTLM as the protocol for this realm
2. Specify the IP address and port for the primary NTLM server that the CAASNT Agent Service is running. The default port is 16101. Click on OK.
Click Apply to save your changes. Repeat the above steps for additional NTLM servers, up to a total of 50.
Technical Brief
NTLM Authentication
3. On the Action field, right click and click on authenticate.
4. A pop-up window will display the newly created NTLM realm, click on OK.
You can verify the user was authenticated through the Blue Coat appliance by looking at the access log tail (http://x.x.x.x:8081/Accesslog/tail where x.x.x.x is the IP address of your Blue Coat appliance). For example:
In this TechBrief we have discussed how to quickly install and configure NTLM authentication using the Blue Coat SG Series appliance. For more information about Blue Coat products please contact your local sales representative or go to www.bluecoat.com.
Technical Brief
Contact Blue Coat Systems 1.866.30.BCOAT 408.220.2200 Direct 408.220.2250 Fax www.bluecoat.com
Blue Coat Systems, a Web security company, has developed the industrys first port 80 security appliance. Safeguarding many of the world's largest corporate networks, this high-performance security appliance intelligently protects against Webbased threats by policing Port 80 the primary hole in the enterprise security infrastructure. Headquartered in Sunnyvale, California, Blue Coat Systems can be reached at 408.220.2200 or at http://www.bluecoat.com. Copyright 2002 Blue Coat Systems, Inc. All rights reserved worldwide. No part of this document may be reproduced by any means nor translated to any electronic medium without the written consent of Blue Coat Systems, Inc. Specifications are subject to change without notice. Information contained in this document is believed to be accurate and reliable, however, Blue Coat Systems, Inc. assumes no responsibility for its use, Blue Coat is a registered trademark of Blue Coat Systems, Inc. in the U.S. and worldwide. All other trademarks mentioned in this document are the property of their respective owners. Version 1.0