Hi all, I am a little bit confused about the setup of Squid with authentication to Active Directory I am using: RedHat 9 Squid 2.5 Samba 3.0.2 Windows Server 2000
In the Squid manual is the line: Squid writes cleartext usernames and passwords when talking to the external authentication processes In our AD setup is the use of plaintext passwords not allowed Still I want Squid to authenticate to the AD domain How can this be set up ? What do I really need ? The Squid manual is talking about a: NTLM challenge/response authentication against an NT domain controller In my opinion I don't need the NTLM stuff when I use the AD system Is this correct ? Questions about the winbindd daemon: I compiled Samba with: --with-ads --with-acl-support --with-winbind --with-winbind-auth-challenge When I start the winbindd and do a: net ads join then commands like: wbinfo -u will work Still there are errors in the log like: SPENGO login failed: Logon failure Kinit failed: Preauthentication failed These errors are gone when I do a: net rpc join Can these errors be ignored, or do I really need to join the rpc domain ? Regards, Johan
