Is there someone here using TMG as reverse proxy for access to Confluence?
I can access Confluence through TMG, but delegation of credentials does not work, so I get asked for creds. two times. Once for TMG and once for Confluence. Team Calendar subscription from Outlook does not work because of this.
The listener is set to provide HTTP Authentication Basic, and authentication delegation is set to basic authentication. Somehow TMG is unable to pass credentials to Confluence. I have not done any configuration changes to Confluence with regards to this as I do not know what to do.
Some hints would be appreciated :)
Well, a bit late maybe...
But this is how it works:
Client -> (TMG) -> (IIS on Confluence Server) -> Confluence (via AJP)
Confluence uses a custom authenticator which enables it to use the remote-user header (and trusting it fully).
The IIS is for authentication of the user (kerberos or NTLM). The TMG will act as a proxy and thus have the users NTLM or kerberos Session (that is why the user only has to authenticate at the TMG).
A different setup would be:
Other solutions are, of course, possible.
Do you use templates with Confluence? Take part in a remote 1-hr workshop. You'll receive USD $100 for your time! We're looking for people to participate in a remote 1-hr workshop...
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG
You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs