NTLM path Load Balancing failure
Article ID: CTX225609
Updated On:
Description
While configuring NTLM authentication e.g. https://support.citrix.com/article/CTX215684. If the NTLM path parameter is pointing to an LB VIP which in turn is pointing to a back-end server with NTLM auth enabled, authentication fails.
In packet trace we don’t see the NetScaler forwarding the NTLMSSP_NEGOTIATE packet to the back-end server.
Resolution
This is due to a known issue (ISSUE-ID : 0677747) - The work around is to point the NTLM path directly to the back-end server instead of LB VIP
This issue is resolved in the following versions.
12.0.51.x or above
11.1.55.x or above
11.0.71.x or above
#0677747: NTLM authentication fails when the NetScaler tries to negotiate with an LB virtual server in front of the NTLM server.
This issue is resolved in the following versions.
12.0.51.x or above
11.1.55.x or above
11.0.71.x or above
Problem Cause
Known issue#0677747: NTLM authentication fails when the NetScaler tries to negotiate with an LB virtual server in front of the NTLM server.
Issue/Introduction
If the NTLM path parameter is pointing to an LB VIP which in turn is pointing to a back-end server with NTLM auth enabled, authentication fails. - Reference: https://support.citrix.com/article/CTX215684
Additional Information
Reference: https://support.citrix.com/article/CTX215684
Was this article helpful?
Yes
No
Powered by
