Transparent ProxySG appliance reports "authentication_redirect_to_virtual_host DENIED" error message in Access Logs

book

Article ID: 168321

calendar_today

Updated On:

Products

ProxySG Software - SGOS

Issue/Introduction

All users fail to authenticate in a transparent proxy. An "authentication_redirect_to_virtual_host DENIED" message can be seen from the Access Logs.

Resolution

  1. Please ensure the HTTPS Reverse Proxy service for virtual URL is intercepted explicitly. This service must be exclusively listening for virtual URL authentication requests.
  2. Please ensure there's no rule in policy denying explicit traffic. Transparent authentication is performed via explicit connection, as you are directing the transparent user to authenticate at the ProxySG appliance.

The following KB article describes step by step how to setup transparent SSL Forward proxy with authentication:
http://bluecoat.force.com/knowledgebase/articles/Solution/HowtoconfiguretransparentauthenticationtosupportHTTPandHTTPS