Re: [squid-users] SMB_AUTH questions

From: Mike Diggins <diggins@dont-contact.us>
Date: Mon, 10 Sep 2001 21:35:39 -0400 (EDT)

On Mon, 10 Sep 2001, Larry J Eng wrote:

> Hello All,
> I have a question about the SMB_AUTH module. I noticed that it
> is not capable of having multiple PDC/BDC's... and yes I know MSNT
> auth does. We need

I *think* that if your PDC's and BDC's are in the same broadcast domain
this might work. However, most of use are not set up that way and smb_auth
has no mechanism to specify multiple domain controllers. What I do is use
this perl script as my authenticator (perl script courtesy of Henrik). If
the first DC fails it will check the other. Not ideal but it works.

#!/usr/bin/perl
use IPC::Open2;
open2(*read1,*write1,"/usr/local/squid/bin/smb_auth -W ap1 -U {PDC IP}");
open2(*read2,*write2,"/usr/local/squid/bin/smb_auth -W ap1 -U {BDC IP}");
select write1;
$|=1;
select write2;
$|=1;
select STDOUT;
$|=1;
while(<>) {
  print write1 $_; $ans = <read1>;
  if ($ans =~ /^OK/) { print $ans; next; }
  print write2 $_; $ans = <read2>;
  if ($ans =~ /^OK/) { print $ans; next; }
  print $ans;
}

-Mike
Received on Mon Sep 10 2001 - 19:35:48 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:02:07 MST