Windows 7 Credential Manager and ntlm proxy authentication untrusted domain

Jarrod
Jarrod used Ask the Experts™
on
Hello experts

I work in an organisation where we have our own local AD and have our upstream internet provided through another section of the organisation complete seperate to us with a totally separate AD with no trust between the two and there will never be one implemented.

Our local AD username and passwords generally match the upstream ones in our parent companies AD environment but we have different domain names. Our parent company has an authenticated proxy whereby windows credential manager has been happily working and supressing the need for the end users to enter logon credentials to the web browsers when we open them until our parent company changed to an NTLM proxy.

Since they implemented the NTLM proxy all users are now prompted to logon and have to remember to put @otherdomain on the end and even though windows credential managers saves the details it prompts every time we open the browser still so its pointless it offering to save the credentials. I'm hoping there is a way to fix it so we suppress the proxy logon prompts again using credential manager or some other fix in windows. Is there a way anyone can suggest for me to somehow automatically submit a username with @otherdomain for the proxy logon for the web browsers ?
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Business Consultant (Owner)
Most Valuable Expert 2012
Expert of the Year 2018
Commented:
Talk to the upstream people. So far as I know, if their proxy prohibits saving passwords there is not much you can do. I see this from time to time and must remember a frequent password or keep my passwords in a password manager for ready access.

Author

Commented:
I don't think its so much the prohibit it its because we are in a different domain, if I use a non domain joined device credential manager seems to work ok, I would guess its my device auto submitting my domain name and it being boucned
JohnBusiness Consultant (Owner)
Most Valuable Expert 2012
Expert of the Year 2018
Commented:
It has nothing to do with being a domain. Some web sites will not let you store passwords either. It depends.

I would ask the upstream people for their comments on this. That is what I would do.
Commented:
I was able to get one step closer by adding a upn suffix that matches our parent company and then using it with our user accounts, our only problem is when the users passwords don't match it causes a lockout in ad for the user. So whilst I couldn't find any method to tell the browser which domain name to submit with the username I did find a potential workaround
JohnBusiness Consultant (Owner)
Most Valuable Expert 2012
Expert of the Year 2018

Commented:
So how do you wish to close this question if I have assisted you?

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial