Solved

Prevent IE8 from saving proxy credentials

Posted on 2010-09-21
4
1,618 Views
Last Modified: 2013-12-08
Hi,

We have a situation where some of our users log onto a Citrix server (Windows 2008, Xenapp 5.0) using a generic shared login account.

On our network, the shared login account does not have access to the internet via our proxy, for obvious reasons (not being able to indentify the user). However, some of these users that use the shared account also have their own account which they use for other purposes such as internet access.

The problem we have is that sometimes, one of these users will try to visit an external web site with Internet Explorer 8 (whilst logged on using the shared account) and when they get prompted for proxy authentication, they put in their personal username and password, and choose to 'remember to password'.

This results in all of the users of this shared account getting internet access using the cached credentials, and once word gets around, the access gets abused. Of course, this causes big problems for the person whose credentials have been cached and are being used for proxy authentication, as they get the initial blame for the excessive/unacceptable usage.

So, is there a way to prevent IE8 from saving passwords for proxy authentication?

I've tried the group policy setting for "Turn on the auto-complete feature for user names and passwords on forms" but this seems to only apply to HTML forms, not NTLM/HTTP auth challenges.

Any tips would be greatly appreciated.

0
Comment
Question by:hvec-it
  • 2
4 Comments
 
LVL 10

Expert Comment

by:ujitnos
Comment Utility
I am not aware of any sch settings in IE 8, but maybe you can check in your proxy server if you can re-authenticate those specific users each time they login or once a day.
0
 
LVL 3

Accepted Solution

by:
celdridgeMadman earned 500 total points
Comment Utility
This shoudl still work in IE8 I believe -

http://support.microsoft.com/kb/229940
0
 

Author Comment

by:hvec-it
Comment Utility
Thanks celdridgeMadman, that worked perfectly!

Much appreciated
0
 

Author Closing Comment

by:hvec-it
Comment Utility
The Microsoft KB article at http://support.microsoft.com/kb/229940
 was the answer to this problem
0

Featured Post

6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

Join & Write a Comment

This paper addresses the security of Sennheiser DECT Contact Center and Office (CC&O) headsets. It describes the DECT security chain comprised of “Pairing”, “Per Call Authentication” and “Encryption”, which are all part of the standard DECT protocol.
This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
This Micro Tutorial will demonstrate how nuggets on the Web are formatted by using Chrome Developer Tools. These tools would not only view the site's CSS but it can also modify it and save the CSS to use on your own site.
How to create a custom search shortcut to site-search Experts Exchange using Google in the Firefox browser. This eliminates the need to type out site:experts-exchange.com whenever you want to search the site. Launch your Bookmark Menu: Press 'Ctrl +…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

6 Experts available now in Live!

Get 1:1 Help Now