My website uses the Window Account to authenticate.
After I joined HAProxy to AD, The browser: Microsoft Edge always asked for credentials even though I input the correct username and password.
in Edge or via GPO you can define when the Browser will use Auth via NTLM (Windows integragted). There are a few rules, which IE or Edge will use to detect, whether its “intranet” or “everything else”.
eg. signle domain names like will use ntlm, any domain like my.server.com will use basic auth or the creditential popup.
you have to set http-keep-alive and prefer-last-server on backend and http-keep-alive on frontend