When you configure Active Directory integration with NTLM, Symantec Web Gateway communicates with user browsers to perform the following tasks:
Extracts an Active Directory name
Correlates the user's Active Directory name with the user's IP address
Reinforces user authentication to the domain controllers when the user's credentials expire
Table: Steps to configure Active Directory integration with NTLM describes the steps to configure Active Directory integration with NTLM.
Table: Steps to configure Active Directory integration with NTLM
Specify Management Interface Name in the Web GUI.
To avoid making changes to user Web browsers, specify the Management Interface Name in the Web GUI.
See Specifying the Management Interface Name in Symantec Web Gateway.
Add A record to DNS for each Symantec Web Gateway.
To avoid making changes to user Web browsers, add an A record in DNS for each appliance on which you specified the Management Interface Name.
See DNS change needed for NTLM.
Specify your NTLM settings.
Specify your Active Directory and NTLM settings in the Web GUI.
See Configuring Active Directory integration.
See Configuring Symantec Web Gateway to integrate Active Directory with NTLM.
If necessary, make Web browser changes.
You may need to make changes to user Web browsers depending on how you configured NTLM and the user Web browser and operating system.
See Web browser changes needed for NTLM.
If necessary, make Outlook, Windows Vista, and Windows 7 or other operating system changes.
You may need to make changes to Outlook, Windows Vista and Windows 7, or other operating systems to ensure compatibility with NTLM.
See Ensuring compatibility with NTLMv1 and NTLMv2.
Test the Active Directory integration with NTLM.
If the Active Directory integration works correctly, user names appear in the Web GUI reports if you have an NTLM authentication policy and a user-based policy.
See Step 5.
Subscribing will provide email updates when this Article is updated. Login is required to Subscribe
Thanks for your feedback. Let us know if you have additional comments below. (requires login)
This will clear the history and restart the chat.