Security for Virtualized Environments (SVE) by Bitdefender is the first comprehensive security solution for virtualized datacenters. The solution protects virtualized Windows, Linux, and Solaris systems, both servers and desktops. While integrated with VMware vShield, the unique architecture of the solution allows it to be leveraged when using any system virtualization offering.
This article describes how to configure Security Console to work with a proxy that uses Active Directory (NTLM) authentication. The article applies to SVE (Multi-Platform) 1.2.4.
Starting with version 1.2.4, SVE (Multi-Platform) provides support for configuring SecurityConsole to connect via a proxy server using basic authentication or no authentication. Proxy settings can be configured in Security Console from the company account page.
For proxy servers that authenticate users against Active Directory, a workaround is available. The workaround works for the NTLM authentication method
To enable Security Console to connect via a proxy server that uses Active Directory (NTLM) authentication, you must install a local proxy (cntlm) on the Security Console appliance. You will configure Security Console to connect to the local proxy and the local proxy to connect to the corporate proxy server that uses Active Directory (NTLM) authentication.
You can perform this setup immediately after deploying the appliance and configuring its network settings or at any time later on. Note that the appliance must have Internet access.
To install and configure the local cntlm proxy on the Security Console appliance:
Internet connection is required for apt-get to download the package. To set up a temporary Internet connection via a proxy server using basic authentication or no authentication, you can use one of the following commands, replacing the parameters in capital letters with the proxy details:
After installing cntlm, remove the proxy connection by running the following command:
$ unset http_proxy
Once you have installed and configured cntlm on the Security Console appliance, configure Security Console to connect through the local proxy: