Hello,
I haven't been able to find the information in the documentation on how to access an external repository behind a proxy with authentication.
There is a proxy field in the repository definition, but it doesn't seem to work. It doesn't ask me for my authentication information.
Thank you in advance.
Access to the external repository behind a proxy
Forum Rules
Community Forum Rules
* English support on www.reddit.com/r/wapt
* French community support is available on this forum
* Please prefix the topic title with [RESOLVED] if it is resolved.
* Please do not edit a topic that is tagged [RESOLVED]. Open a new topic referencing the old one.
* Specify the installed WAPT version, full version, and build number (2.2.1.11957 / 2.2.2.12337 / etc.) as well as the Enterprise/Discovery edition.
* Versions 1.8.2 and earlier are no longer supported. The only questions accepted regarding version 1.8.2 are related to upgrading to a supported version (2.1, 2.2, etc.).
* Specify the server OS (Linux/Windows) and version (Debian Buster/Bullseye - CentOS 7 - Windows Server 2012/2016/2019).
* Specify the OS of the administration/package creation machine and the machine with the problematic agent, if applicable (Windows 7/10/11/Debian 11/etc.).
* Avoid asking multiple questions when opening a topic, otherwise it may be ignored. If there are multiple topics, open separate topics, preferably one after the other and not all at the same time (i.e., do not spam the forum).
* Include code snippets, screenshots, and other images directly in the post. Links to Pastebin, Bitly, and other third-party sites will be systematically removed.
* As with any community forum, support is provided voluntarily by members. If you require commercial support, you can contact Tranquil IT's sales department at 02.40.97.57.55
Community Forum Rules
* English support on www.reddit.com/r/wapt
* French community support is available on this forum
* Please prefix the topic title with [RESOLVED] if it is resolved.
* Please do not edit a topic that is tagged [RESOLVED]. Open a new topic referencing the old one.
* Specify the installed WAPT version, full version, and build number (2.2.1.11957 / 2.2.2.12337 / etc.) as well as the Enterprise/Discovery edition.
* Versions 1.8.2 and earlier are no longer supported. The only questions accepted regarding version 1.8.2 are related to upgrading to a supported version (2.1, 2.2, etc.).
* Specify the server OS (Linux/Windows) and version (Debian Buster/Bullseye - CentOS 7 - Windows Server 2012/2016/2019).
* Specify the OS of the administration/package creation machine and the machine with the problematic agent, if applicable (Windows 7/10/11/Debian 11/etc.).
* Avoid asking multiple questions when opening a topic, otherwise it may be ignored. If there are multiple topics, open separate topics, preferably one after the other and not all at the same time (i.e., do not spam the forum).
* Include code snippets, screenshots, and other images directly in the post. Links to Pastebin, Bitly, and other third-party sites will be systematically removed.
* As with any community forum, support is provided voluntarily by members. If you require commercial support, you can contact Tranquil IT's sales department at 02.40.97.57.55
-
sfonteneau
- WAPT Expert
- Messages: 2318
- Registered: July 10, 2014 - 11:52 PM
- Contact :
https://www.wapt.fr/fr/doc/Installation ... tres-proxy
You can enter your username and password in this format:
http_proxy=http://user:pwd@host_fqdn:port
You can enter your username and password in this format:
http_proxy=http://user:pwd@host_fqdn:port
-
dcardon
- WAPT Expert
- Messages: 1929
- Registration: June 18, 2014 - 09:58
- Location: Saint Sébastien sur Loire
- Contact :
You have the option:
* to configure an exception rule on your proxy
* to download the package in question through your browser with the authentication of your choice and import the package as a file
* to put identifiers in a local file (who even mentioned putting them on the network???) which you can delete right after
* to propose a patch
* to offer to fund a patch
Nowhere in this list do I see the option "awkwardly complain on the forum"... Sorry.
Denis
Denis Cardon - Tranquil IT
Share your experiences on WAPT! Send us your blog and article URLs in the "Your Opinion of the forum, and we'll feature them on the WAPT
Share your experiences on WAPT! Send us your blog and article URLs in the "Your Opinion of the forum, and we'll feature them on the WAPT
Denis, Denis, moderation.
Denis, it's true that your contact didn't properly identify themselves; since then, I've learned that they're a major player in the French healthcare sector and are interested in WAPT Enterprise, so that's great news for WAPT.
Denis, the solutions you're proposing are spot on, and technically you're 100% correct.
Among the added security features, we'll definitely need to implement an authenticated mode for external repositories, even though Tranquil IT's message is to only trust external repositories based on their perceived reliability.
We'd even say that the most security-conscious businesses will have set up a VLAN to analyze external packets on a small sample of machines before repackaging the downloaded packet for deployment on their own internal test samples.
For better service, forum participants, please identify yourselves more precisely. Don't hide behind a generic username. Alternatively, describe your needs more clearly, express your constraints, and if they fall under your best practices, then we are interested in those practices if securing a network justifies them.
It would be foolish for WAPT to be dropped by a major healthcare organization in France simply because we gave a clumsy answer on our own forum.
So, please, if you wish to remain anonymous, be extremely specific about your needs. And if you choose not to hide behind a username, then we will answer your questions with a general understanding of your constraints.
Happy New Year, Vincent
Denis, it's true that your contact didn't properly identify themselves; since then, I've learned that they're a major player in the French healthcare sector and are interested in WAPT Enterprise, so that's great news for WAPT.
Denis, the solutions you're proposing are spot on, and technically you're 100% correct.
Among the added security features, we'll definitely need to implement an authenticated mode for external repositories, even though Tranquil IT's message is to only trust external repositories based on their perceived reliability.
We'd even say that the most security-conscious businesses will have set up a VLAN to analyze external packets on a small sample of machines before repackaging the downloaded packet for deployment on their own internal test samples.
For better service, forum participants, please identify yourselves more precisely. Don't hide behind a generic username. Alternatively, describe your needs more clearly, express your constraints, and if they fall under your best practices, then we are interested in those practices if securing a network justifies them.
It would be foolish for WAPT to be dropped by a major healthcare organization in France simply because we gave a clumsy answer on our own forum.
So, please, if you wish to remain anonymous, be extremely specific about your needs. And if you choose not to hide behind a username, then we will answer your questions with a general understanding of your constraints.
Happy New Year, Vincent
Vincent CARDON
Tranquil IT
Tranquil IT
Hello,
From a technical standpoint, I prefer solution 2 (using a browser that handles proxy authentication).
Ideally (for ease of use), this would be transparent authentication, similar to what's found in browsers that rely on the system's proxy configuration. Failing that, requiring authentication upon access could be a good compromise.
From a technical standpoint, I prefer solution 2 (using a browser that handles proxy authentication).
Ideally (for ease of use), this would be transparent authentication, similar to what's found in browsers that rely on the system's proxy configuration. Failing that, requiring authentication upon access could be a good compromise.
WAPT 1.5.1.9
Server: CentOS 7
Administration: Windows 7 Pro
Clients: Windows 7 Pro
Server: CentOS 7
Administration: Windows 7 Pro
Clients: Windows 7 Pro
