IE Proxy Settings

Posted on 2009-05-11
Last Modified: 2013-12-08

We just installed the Barracuda web filter on our network, and to ensure that all users are required to logon va LDAP or NTLM methods on non-authenticated systems we had to change the Internet explorer proxy settings within a GPO. My question is, that works great while the laptops are on campus, but when the teachers take the laptops home, the IE settings are stored with those proxy settings and then none of the teachers are use their laptops away from campus. Without having them manually disable those settings ( which they can not, no access too) how can I correct this? Thanks in advance
Question by:ravenrx7

Expert Comment

ID: 24358928
you would have to put a domain controller in their home, we had to do the same thing with out travelling sales reps

Author Comment

ID: 24358952
i do not think thats the only solution, in that case we would have to have VPN or 50 DCs installed in all the homes

Expert Comment

ID: 24359002
hmm, what about, setup a url to redirect back to your network, have the router pass requests from that url to the web filter?  setup all the proxy settings to the url from dynip
Ransomware: The New Cyber Threat & How to Stop It

This infographic explains ransomware, type of malware that blocks access to your files or your systems and holds them hostage until a ransom is paid. It also examines the different types of ransomware and explains what you can do to thwart this sinister online threat.  


Accepted Solution

Hisham_Elkouha earned 500 total points
ID: 24359902
Use Automaticaly Detect Setting instead

Expert Comment

ID: 24362619
Use WPAD via DNS, internally
Read about PAC files and WPAD.

I explained WPAD in this thread :

Your IE will be configured to use the "auto-detect proxy settings" options
When a laptop is inside the company, the PAC file will be found
When outside,  it will fail to the default behaviour: no proxy, DIRECT access


Author Comment

ID: 24364069
Guys, this should work right?
Method 2: Modify Group Policy settings
Click Start, click Run, type gpedit.msc, and then click OK.
In Group Policy Object Editor, double-click User Configuration\Administrative Templates\Windows Components\Internet Explorer.
Double-click Disable caching of Auto-Proxy scripts.
Click Enable, and then click OK.

Expert Comment

ID: 24371302
we use the wpad currently on the network and off. You push out the wpad using GPO as you suggested. The failover is built into the wpad. There are many examples on the internet.

Example for one subnet
if (isInNet(myIpAddress(), "", ""))

This is failover. When off the network is uses direct route or default route either one. But i think you want to let IE cache the proxy script. You can control the expiration of the script in the IIS server that pushes out the wpad by setting the TTL on the object.

You will either need to use autodetect as stated above or we use "Use auto configuration script" setting in GPO. With the above failover it works anywhere.

Featured Post

Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this article, we will see the basic design consideration while designing a Multi-tenant web application in a simple manner. Though, many frameworks are available in the market to develop a multi - tenant application, but do they provide data, cod…
In threads here at EE, each comment has a unique Identifier (ID). It is easy to get the full path for an ID via the right-click context menu. However, we often want to post a short link within a thread rather than the full link. This article shows a…
This Micro Tutorial will demonstrate how to add subdomains to your content reports. This can be very importing in having a site with multiple subdomains.
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

820 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question