End user authentication fails without logging any events in the Custom Reports. Depending on the Authentication Policy, this may mean that end user access is blocked, or it may mean that the end user is restricted to a policy based upon their machine's IP address.
Symantec Web Gateway does NOT support this configuration if one of the Domain Controllers is used for authentication.
Please re-architect so that each Domain Controller within a given subnet has a unique hostname.
As a workaround, you can avoid using any Authentication features of Symantec Web Gateway.
Two Domain Controllers with the same hostname are on the same subnet, but these two machines have different FQDN names.
Steps to Reproduce: From client, initiate NTLM authentication request via curl script: