Answer
How to Configure WPAD through DNS- First you have to configure a wpad site in your IIS
- Open the proxypac.pac file you have previously created and save as wpad.dat.
- Copy wpad.dat to the location: C:\inetpub\wwwroot
- Open IIS Management Console
- Add web site – right click on Sites
- Site name: wpad; Physical Path: C:\inetpub\wwwroot; Hostname: wpad / Set the binding with the Server IP address and click OK.
- In the newly created site add mime type: .dat; “MIME type: application/x-ns-proxy-autoconfig”
- DNS setup in order to have automatic proxy
- On your Domain Controller go to DNS.
- On your existing domain add New Zone, Primary Zone, Zone name: wpad.
- In this zone right click and select New Host. Name: wpad, IP address: the IP of your IIS server hosting the wpad.dat file.
- On the client machine: Set as primary DNS the IP of the Domain controller.
On Microsoft Windows Server 2008 or 2008R2 the WPAD domain can be blocked. To check if it is blocked run CMD with the command: dnscmd /info /globalqueryblocklist. If wpad appears in the response, you should run the command: dnscmd /config /enableglobalqueryblocklist 0. This should remove the blocking.
- Browser deployment from Group Policy:
- On the Domain Controller create a new Organization Unit with all the users you want to use the proxypac.pac file.
- Right click on the new OU and select “Create a GPO in this domain, and Link it here...”. Name it properly. Edit the new policy.
- In the same policy that enforces the Logon Script expand User Configuration/ Policies/ Windows Settings/ Internet Explorer Maintenance/ Connection / Automatic Browser Configuration.
- Enable “Automatically detect configuration settings”.
- On the Client side: Open CMD and run the command “gpupdate /force”.
- Delete the browsing history.
- Check that in IE - Automatically detect settings is enabled.
- Close and Reopen IE and verify if the wpad.dat has been updated and is the one from your IIS server. You can do this by opening Internet Options /General /Browsing History section – Settings/ View Files. In the opened folder check to see if you have wpad.dat file and that the content is correct.
For Firefox you can manually set the settings from the client machine:
- Open Firefox.
- Select Tools from the application menu, click Options.
- Click the Advanced section, click Settings under Connection.
- Select Auto-detect proxy settings for this network, click OK.
See also: