Re: [squid-users] squid and ntlm without winbind
Citando Kinkie gkin...@gmail.com: A domain controller is also a domain member ; the same configuration should apply. You may want to detail what you did, and what error messages you got - if any. instead of using this lines: idmap backend = ldap:ldap://fqdn/ idmap uid = 1-2 idmap gid = 1-2 winbind trusted domains only = Yes i tried to add only this line: idmap backend = ldap:ldap://fqdn/ without: idmap uid = 1-2 idmap gid = 1-2 winbind trusted domains only = Yes and it seems working fine... i haven't tested squid, but wbinfo -u does work thnx
Re: [squid-users] squid and ntlm without winbind
On Sat, 6 Nov 2010 10:25:43 +0100 Kinkie gkin...@gmail.com wrote: On Fri, Nov 5, 2010 at 3:26 PM, Maurizio Marini mau...@datalogica.com wrote: Hi there [...] samba is pdc with ldap backend Now i should authenticate squid with samba on the same server. I cannot use winbind (winbind should be used on samba domain member, isn'it), so following link: http://wiki.squid-cache.org/ConfigExamples/Authenticate/NtlmCentOS5 is not useful, or, better: i tried to configure winbind using this wiki with no success. A domain controller is also a domain member ; the same configuration should apply. You may want to detail what you did, and what error messages you got - if any. -- /kinkie i stil get this error ;( wbinfo -a user%password plaintext password authentication failed Could not authenticate user user%password with plaintext password challenge/response password authentication failed error code was NT_STATUS_CANT_ACCESS_DOMAIN_INFO (0xc0da) error messsage was: NT_STATUS_CANT_ACCESS_DOMAIN_INFO Could not authenticate user user with challenge/response wbinfo -t checking the trust secret via RPC calls failed error code was NT_STATUS_CANT_ACCESS_DOMAIN_INFO (0xc0da) Could not check secret should i join domain when client and server are on the same host? maybe it is better to post on samba lists, too thnx maurizio
Re: [squid-users] squid and ntlm without winbind
Maurizio Marini mau...@datalogica.com escribió: On Sat, 6 Nov 2010 10:25:43 +0100 Kinkie gkin...@gmail.com wrote: On Fri, Nov 5, 2010 at 3:26 PM, Maurizio Marini mau...@datalogica.com wrote: Hi there [...] samba is pdc with ldap backend Now i should authenticate squid with samba on the same server. I cannot use winbind (winbind should be used on samba domain member, isn'it), so following link: http://wiki.squid-cache.org/ConfigExamples/Authenticate/NtlmCentOS5 is not useful, or, better: i tried to configure winbind using this wiki with no success. A domain controller is also a domain member ; the same configuration should apply. You may want to detail what you did, and what error messages you got - if any. -- /kinkie i stil get this error ;( wbinfo -a user%password plaintext password authentication failed Could not authenticate user user%password with plaintext password challenge/response password authentication failed error code was NT_STATUS_CANT_ACCESS_DOMAIN_INFO (0xc0da) error messsage was: NT_STATUS_CANT_ACCESS_DOMAIN_INFO Could not authenticate user user with challenge/response wbinfo -t checking the trust secret via RPC calls failed error code was NT_STATUS_CANT_ACCESS_DOMAIN_INFO (0xc0da) Could not check secret should i join domain when client and server are on the same host? maybe it is better to post on samba lists, too thnx maurizio You need two smb.conf. One for the domain controller and another for the winbind. I have a smb.conf and a winbind.conf, and the winbindd uses the winbind.conf. Yes, you have to joing the winbind to the domain, with: net rpc join -s /etc/samba/winbind.conf -U username Hope this helps. Bye.
Re: [squid-users] squid and ntlm without winbind
On Fri, Nov 5, 2010 at 3:26 PM, Maurizio Marini mau...@datalogica.com wrote: Hi there [...] samba is pdc with ldap backend Now i should authenticate squid with samba on the same server. I cannot use winbind (winbind should be used on samba domain member, isn'it), so following link: http://wiki.squid-cache.org/ConfigExamples/Authenticate/NtlmCentOS5 is not useful, or, better: i tried to configure winbind using this wiki with no success. A domain controller is also a domain member ; the same configuration should apply. You may want to detail what you did, and what error messages you got - if any. -- /kinkie
[squid-users] squid and ntlm without winbind
Hi there my case is very simple but i dunno how should setup it, i feel very lame ;( I have CentOS 5.5 with squid-2.6.STABLE21-6.el5 samba3x-3.3.8-0.52.el5_5.2 samba is pdc with ldap backend Now i should authenticate squid with samba on the same server. I cannot use winbind (winbind should be used on samba domain member, isn'it), so following link: http://wiki.squid-cache.org/ConfigExamples/Authenticate/NtlmCentOS5 is not useful, or, better: i tried to configure winbind using this wiki with no success. Any suggestion will be very very welcome :) m.