{% extends 'squid/auth/active_directory.html' %} {% block auth_ad_scheme_ntlm %}class="active"{%endblock%} {% block tab_content %}

NTLM authentication is much less secure than Kerberos. Nevertheless it is still used when you need to authenticate users outside of your Active Directory domain or the browser is configured to connect to proxy IP address instead of proxy's FQDN. Authentication is done by redirecting NTLM authentication requests to your domain controllers which may result into increased load on them.

{% if form.non_field_errors %}
{% for error in form.non_field_errors %} {{ error|escape }} {% endfor %}
{% endif %}
{% csrf_token %}
{{form.ntlm_helper_total}}
{% if form.ntlm_helper_total.errors %} {{form.ntlm_helper_total.errors|striptags}} {% else %} Total number of authentication helpers to run. It is recommended to set it equal to the approximate number of proxy users in your network. {%endif%}
{{form.ntlm_helper_idle}}
{% if form.ntlm_helper_idle.errors %} {{form.ntlm_helper_idle.errors|striptags}} {% else %} Idle number of authentication helpers to run. It is recommended to make it equal to approximately 1/2 of the total number of users in your network. {%endif%}
{{form.ntlm_helper_startup}}
{% if form.startup.errors %} {{form.ntlm_helper_startup.errors|striptags}} {% else %} Number of authentication helpers to run at startup of Squid. It is recommended to make it equal to approximately 1/4 of the total number of users in your network. {%endif%}
{% endblock %}