You should add something like this: ... external_acl_type wbinfo_group %LOGIN /usr/lib/squid/wbinfo_group.pl ... acl internet-group external wbinfo_group INTERNETACCESS ... http_access allow internet-group ...
There is also a "wb_group" external_acl helper that can be used instead of "wbinfo_group.pl" The first one works fine for me. Ciao Michele De Martin |---------+------------------------------------------------------------------------> | | "Sessler, Enrico" <[EMAIL PROTECTED]> | | | Sent by: | | | [EMAIL PROTECTED]| | | d-cache.org | | | | | | | | | 03/05/2003 11:27 AM | | | | |---------+------------------------------------------------------------------------> >-------------------------------------------------------------------------| | | | To: "'[EMAIL PROTECTED]'" | | <[EMAIL PROTECTED]> | | cc: | | Subject: [squid-users] WB_NTLM Auth against NT Group | >-------------------------------------------------------------------------| Hi, have installed and tested squid 2.5.STABLE1 with wb_ntlmauth successfully. Squid validates my NT userid against the PDC and gives me access. However we have a Windows NT group called INTERNETACCESS and it would be very nice if we could configure squid (wb_ntlmauch) to give only users access who are in this NT group. Thus it first has to identify/validate the user via NTLM and than check his membership of this group. Does anybody know if this is possible at all and if yes how? Best regards Enrico Sessler
