Gavin,
I know how you feel I battled with winbind and these problems for ages and
finally it all worked. Below is the relevant parts of my squid.conf.
I'm /almost/ there :) winbindd now seems to work fine, and I can
successfully limit squid access only to those who authenticate using NTLM...
On Tue, 2003-04-01 at 11:42, Gavin Hamill wrote:
Gavin,
I know how you feel I battled with winbind and these problems for ages and
finally it all worked. Below is the relevant parts of my squid.conf.
I'm /almost/ there :) winbindd now seems to work fine, and I can
successfully limit
external_acl_type NT_global_group %LOGIN /usr/lib/squid/wb_group
acl domainadmins external NT_global_group Domain Admins
Hi Gavin,
Brian O'Neill submitted a patch in November to allow you to use `Domain
Admins`, because you can't do it with spaces (as you've discovered).
It's down to the
On Tue, Apr 01, 2003 at 12:17:40PM +0100, Gavin Hamill wrote:
This sounds like either a source-hacking job, or a little shim bash script
with 'tr' to translate the backtick into a double-quote to pass on to the
real wb_group
It turned out to be a very simple source tweak..
I just changed
Gavin Hamill wrote:
I've also set one of our Windows 2000 servers into Active Directory mode to
act as a PDC, but have not experienced any joy in even authenticating by
manually running the ntlm_auth program from the commandline, so I have yet
to get as far as configuring squid to use it!
On Sat, 2003-03-29 at 00:16, Gavin Hamill wrote:
FATAL: authenticateNTLMHandleReply: called with no result string
This is due to a broken response from a helper - it's a *loud* warning
:}.
Does
ntlm_auth broadcast on the local network to find a domain controller?
No. Try ./ntlm_auth
On Sat, Mar 29, 2003 at 12:43:59AM +1100, Robert Collins wrote:
FATAL: authenticateNTLMHandleReply: called with no result string
This is due to a broken response from a helper - it's a *loud* warning
:}.
I gathered that much - unfortunately 'it's broken' doesn't actually tell me
anything
http://www.squid-cache.org/Doc/FAQ/FAQ-23.html will prove very helpful.
You need samba --with-winbind and --with-winbind-auth-challenge, and
join the domain for squid's ntlm authentication to work. The winbind
and windows domain server stuff is in samba's smb.conf. Smbd and nmbd
won't need to
On Sat, 2003-03-29 at 07:51, [EMAIL PROTECTED] wrote:
http://www.squid-cache.org/Doc/FAQ/FAQ-23.html will prove very helpful.
You need samba --with-winbind and --with-winbind-auth-challenge, and
join the domain for squid's ntlm authentication to work. The winbind
and windows domain server