Do you force users authorize on the proxy? (I.e. do you allow anonymous access to the Internet)?
If not, do you support any other authentication scheme besides Integrated Windows authentication (NTLM)