Is there someone here using TMG as reverse proxy for access to Confluence?
I can access Confluence through TMG, but delegation of credentials does not work, so I get asked for creds. two times. Once for TMG and once for Confluence. Team Calendar subscription from Outlook does not work because of this.
The listener is set to provide HTTP Authentication Basic, and authentication delegation is set to basic authentication. Somehow TMG is unable to pass credentials to Confluence. I have not done any configuration changes to Confluence with regards to this as I do not know what to do.
Some hints would be appreciated :)
Well, a bit late maybe...
But this is how it works:
Client -> (TMG) -> (IIS on Confluence Server) -> Confluence (via AJP)
Confluence uses a custom authenticator which enables it to use the remote-user header (and trusting it fully).
The IIS is for authentication of the user (kerberos or NTLM). The TMG will act as a proxy and thus have the users NTLM or kerberos Session (that is why the user only has to authenticate at the TMG).
A different setup would be:
Other solutions are, of course, possible.
This community is celebrating its one-year anniversary and Atlassian co-founder Mike Cannon-Brookes has all the feels.Read more
Hi Community! Kesha (kay-sha) from the Confluence marketing team here! Can you share stories with us on how your non-technical (think Marketing, Sales, HR, legal, etc.) teams are using Confluen...
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG
You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs