Cisco Bug: CSCtd28701 - HTTP Request with Authentication enabled in both proxy & server fails
May 08, 2017
- Cisco Wide Area Application Services (WAAS) Appliances
Known Affected Releases
Symptom: For the scenario where there exists a transparent proxy between a client and a server, if both the proxy and the server require authentication to access some resources, the "unauthorized-response" metadata cache MUST be disabled. This is due to the fact that packets coming from both the proxy and the server have the same IP address and there is no easy way to differentiate between the two devices. The Client Request fails when Authentication enabled in both Reverse Proxy(ACNS) and the server. The proxy has NTLM Request Authentication enabled and the server has Basic Authentication enabled for the object and both use different credentials to authenticate.The setup used is : Client ----> Edge WAE ----> Core WAE ----> Reverse Proxy ----> Server Conditions: This issue can be found only when the Edge WAE is serving the 401 unauthorized response from the cache and also when both Reverse Proxy and server have different Authentication Schemes and use different credentials.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases