Elvar wrote:
I meant to respond to this a long time ago and I'm sorry for the
delay. Yes, I'm using NTLM to authenticate the users to Active
Directory requiring specific group membership. If the users don't
belong to group "Internet Access" they are denied out. I can stomach
the lack of encryption, but with basic proxy auth can they still
authenticate to AD?
Absolutely. There is no difference in Squid's ntlm_auth functionality
between choosing Basic or NTLM/Negotiate. ie you can still do
group-based access controls using Basic.
--
Cheers
Jason Haar
Information Security Manager, Trimble Navigation Ltd.
Phone: +64 3 9635 377 Fax: +64 3 9635 417
PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
