ProxySG appliance access logs show 401 TCP_DENIED or 407 TCP_DENIED and no username is logged when NTLM is enabled