Solved

Windows 7 Credential Manager and ntlm proxy authentication untrusted domain

Posted on 2016-09-12
6
24 Views
Last Modified: 2016-10-19
Hello experts

I work in an organisation where we have our own local AD and have our upstream internet provided through another section of the organisation complete seperate to us with a totally separate AD with no trust between the two and there will never be one implemented.

Our local AD username and passwords generally match the upstream ones in our parent companies AD environment but we have different domain names. Our parent company has an authenticated proxy whereby windows credential manager has been happily working and supressing the need for the end users to enter logon credentials to the web browsers when we open them until our parent company changed to an NTLM proxy.

Since they implemented the NTLM proxy all users are now prompted to logon and have to remember to put @otherdomain on the end and even though windows credential managers saves the details it prompts every time we open the browser still so its pointless it offering to save the credentials. I'm hoping there is a way to fix it so we suppress the proxy logon prompts again using credential manager or some other fix in windows. Is there a way anyone can suggest for me to somehow automatically submit a username with @otherdomain for the proxy logon for the web browsers ?
0
Comment
Question by:Porka
  • 3
  • 2
6 Comments
 
LVL 93

Accepted Solution

by:
John Hurst earned 450 total points (awarded by participants)
ID: 41795310
Talk to the upstream people. So far as I know, if their proxy prohibits saving passwords there is not much you can do. I see this from time to time and must remember a frequent password or keep my passwords in a password manager for ready access.
0
 
LVL 6

Author Comment

by:Porka
ID: 41795315
I don't think its so much the prohibit it its because we are in a different domain, if I use a non domain joined device credential manager seems to work ok, I would guess its my device auto submitting my domain name and it being boucned
0
 
LVL 93

Assisted Solution

by:John Hurst
John Hurst earned 450 total points (awarded by participants)
ID: 41795321
It has nothing to do with being a domain. Some web sites will not let you store passwords either. It depends.

I would ask the upstream people for their comments on this. That is what I would do.
0
 
LVL 6

Assisted Solution

by:Porka
Porka earned 50 total points (awarded by participants)
ID: 41802489
I was able to get one step closer by adding a upn suffix that matches our parent company and then using it with our user accounts, our only problem is when the users passwords don't match it causes a lockout in ad for the user. So whilst I couldn't find any method to tell the browser which domain name to submit with the username I did find a potential workaround
0
 
LVL 93

Expert Comment

by:John Hurst
ID: 41824404
So how do you wish to close this question if I have assisted you?
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Is your Office 365 signature not working the way you want it to? Are signature updates taking up too much of your time? Let's run through the most common problems that an IT administrator can encounter when dealing with Office 365 email signatures.
This script can help you clean up your user profile database by comparing profiles to Active Directory users in a particular OU, and removing the profiles that don't match.
This Micro Tutorial will give you a basic overview of Windows Live Photo Gallery and show you various editing filters and touches to photos you can apply. This will be demonstrated using Windows Live Photo Gallery on Windows 7 operating system.
The viewer will learn how to successfully create a multiboot device using the SARDU utility on Windows 7. Start the SARDU utility: Change the image directory to wherever you store your ISOs, this will prevent you from having 2 copies of an ISO wit…

773 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question