[jcifs] Jcifs over the internet and proxies

Pattison, David david.pattison at siemens.com
Tue Oct 4 16:48:10 GMT 2005

Hi all,
I'm wondering how or if there is a solution for the following situation: We
have a customer at an internal company site, who is accessing our web-app
over the internet, with the app being help at another company site. The
problem is that both company sites are behind proxies/firewalls (I believe
it is an MS proxy of some kind), and the web app itself is on a personal
network. When a user at the other site tries to access the web app, they are
given the password prompt, at which they enter the details for the personal
network (which will in turn authenticate them for the web-app via NTLM). The
app then simply stalls, and an ethereal trace shows that there are constant
NTLM_CHALLENGE packets being sent, closely followed by 407 Proxy
Authentication Required messages. These NTLM_CHALLENGE messages are trying
to authenticate with the username of the original site- not the username
which has just been entered (in fact there is no reference to this anywhere
in the trace I caught).
Does anyone have any thoughts on why this is happening, or a possible
solution. My own theory is that once the first NTLM 401 is returned from the
web app and the valid credentials provided, the proxy is ignoring these and
replacing them with the remote user's credentials, as these are required for
web access. Meaning that once it gets to the other side the wrong
credentials are in use. But as I say, that is just a theory based on my
limited experience.
Oh, and the app works fine otherwise, i.e. internal access.
Kind Regards,
David Pattison
Software Engineer
Siemens Communications
-------------- next part --------------
HTML attachment scrubbed and removed

More information about the jcifs mailing list