On Thursday 24 July 2003 20.11, MaCa ! wrote: > I need to authenticate clients with LDAP, but I need Squid to > change credentials with IE, for authenticate the user/pass that the > user typed when logged in to windows. > I don't want IE to display a popup windows for authentication with > squid. Any way to do this ?
There may exists plugins to MSIE which automates the login process, storing the login+password in the users account. All Squid wants is that somehow the browser sends the correct login+password. How the browser gets this information from the user Squid does not care about (i.e. it may be a dialog box, or the information may be kept securely on file, Squid does not care). > if this is not possible: > Is there any way to modify ntlm_auth module to get user/pass that > IE give with ntlm, and ask to an ldap server ? There is no password exchanged in NTLM authentication, only a one-way one-time hash which can be verified by the NT domain controller, verifying that the user knows his password, nothing more. Regards Henrik -- Donations welcome if you consider my Free Squid support helpful. https://www.paypal.com/xclick/business=hno%40squid-cache.org If you need commercial Squid support or cost effective Squid or firewall appliances please refer to MARA Systems AB, Sweden http://www.marasystems.com/, [EMAIL PROTECTED]
