Guest

Preview Tool

Cisco Bug: CSCtd28701 - HTTP Request with Authentication enabled in both proxy & server fails

Last Modified

May 08, 2017

Products (1)

  • Cisco Wide Area Application Services (WAAS) Appliances

Known Affected Releases

4.2(1)

Description (partial)

Symptom:

For the scenario where there exists a transparent proxy between a client and a server, if both the proxy and the server require authentication to access some resources, the "unauthorized-response" metadata cache MUST be disabled. This is due to the fact that packets coming from both the proxy and the server have the same IP address and there is no easy way to differentiate between the two devices.

The Client Request fails when Authentication enabled in both Reverse Proxy(ACNS) and the server. The proxy has NTLM Request Authentication enabled and the server has Basic Authentication enabled for the object and both use different credentials to authenticate.The setup used is :

Client ----> Edge WAE ----> Core WAE ----> Reverse Proxy ----> Server

Conditions:

This issue can be found only when the Edge WAE is serving the 401 unauthorized response from the cache and also when both Reverse Proxy and server have different Authentication Schemes and use different credentials.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.