On Wed, 22 Oct 2003, Rothermel Wolfgang wrote: > Approximately next year it is planned to migrate the MS NT 4 domain to a > native W2k AD structure. > > Is it possible to > - use AD users and AD groups in SQUID ACLs
Yes. > - authenticate the IE users transparently as the NTLM authenticator does it > currently. Yes and no. As long as your AD setup supports NT systems you can continue using the winbind approach for NTLM authentication, just as you does today. You can also use LDAP for connecting to MS AD. This is a more reliable method, but only work for Basic authentication, not NTLM. You can however combine both, using LDAP for Basic authentication and groups, and Winbind for NTLM authentication. Regards Henrik
