On Thu, 2 Nov 2000, Jakob Curdes wrote:
> Thank you for your quick help. I think I got the idea ,
> however I am unsure if I am specifying the user string correctly, because
> I still get an "Access denied" error.
>
> My test acls are
>
> acl all src 192.168.0.0-192.168.255.255/255.255.0.0
> acl Safe_ports port 21 70 80 210 443 563 1025-65535 8080
> acl allowed_users proxy_auth iS\jc (test example; user/domain exist)
>
> http_access deny !Safe_ports
> http_access allow allowed_users
> http_access deny all
> This looks to me like the ntlm authentication succeeds. So I suppose something is wrong with the user syntax !? I did not find
Yep, the first TCP_DENIED sessions are ok, this is a site effect of the
NTLM authentication process.
However, you need to specify user & domain all lower case in the
squid config. Although case does not matter to windows it does to unix.
So:
acl allowed_users proxy_auth is\jc
should do the trick.
Michael.
-- Michael Weller: eowmob@exp-math.uni-essen.de, eowmob@ms.exp-math.uni-essen.de, or even mat42b@spi.power.uni-essen.de. If you encounter an eowmob account on any machine in the net, it's very likely it's me. -- To unsubscribe, see http://www.squid-cache.org/mailing-lists.htmlReceived on Thu Nov 02 2000 - 09:58:37 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:56:13 MST