Ideally one should be able to use something like msntauth to pull authentication from the pdc the without actually joining the domain, but I don't know if that is possible. I think you have to add a computer account on the domain controller and then join the domain with net join then finally use something like msntauth for the auth?? (and possibly a hosts entry for DNS resolution of the domain comtroller) In other words I was hoping you could tell me, as I don't know :) But it would be really great if this were set up via the web interface - 'shameless plug for help' - lol.
Then again it may not have to be in the web interface if I better understood the process with samba and squid...
thanks
florin wrote:
You said you have done this with 9-10.1 ... may I know how you did it ? This could be helpful ... If not ... I simply use one of the hundreds NT domains available here :o)
On 4/22/05, Bret <[EMAIL PROTECTED]> wrote:
florin wrote:
On 4/20/05, Bret <[EMAIL PROTECTED]> wrote:
I have been trying to get squid setup with manual authentication against my windows 2000 domain controller. This active directory domain controller is running in mixed-mode so authenticating using samba should not be a problem - but the only entry for samba is a "samba workgroup". This really doesn't help me to join the domain to aquire authentication.
I think mnf2 is really lacking in this area of manual authentication setup and documentation. LDAP is not really an option when trying to authenticate and the AD option only works if one installs services for unix...
I sort of agree with you here ... there is an authentication module for winnt in squid (rpm -ql squid|grep auth). Maybe you should try to configure it manually ... if you don't know hos, let me know, I'll help you so you can test it and then I will add to the web interface. How's that ?
I need serious help getting authentication against my w2k server.
Thanks
cheers,
That'd be great! You are the Man, and are always going above and beyond.
I already tried that a couple days ago (I think). Using the net join command - apparently the smbpasswd -j DOMAIN has been deprecated? Anyway, it didn't seem to work for me, but maybe I did something wrong, can you walk me through the general idea and get me started?? (I have joined the domain using mdk 9-10.1 many times so I know it can work)
Do I create the computer account first on the domain controller?
Do I need to set up the web based proxy with auth before joining the domain? -- does it matter?
My setup is: Eth0 = wan Eth1 = lan Eth2 = auth (since the domain controller is on another physically seperated network - I only use this interface for the domain authentication, ssh'ing the firewall and web administration)
I hope this makes sense.
____________________________________________________ Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com ____________________________________________________
