How NTLM works once users are fully configured

Fully configured means that users are registered with the cloud service and their NTLM identities are known. See End Users tab for details on registering users, and NTLM transparent identification for details on NTLM identity.

1. Users start their browsers and try to visit a website.
2. The cloud service checks the users’ source IP address and applies the correct policy.
3. The cloud service finds that transparent identification is enabled in the policy and initiates the NTLM conversation, during which the browser sends the NTLM credentials with no involvement of the users. Note that it is the local policy (i.e., the one identified by IP address) that determines whether NTLM is to be used.
4. The cloud service finds the users’ information in the policy by looking up the NTLM identity, and marks this connection as identified.
5. The cloud service processes the original request as normal. This all happens transparently, behind the scenes.