[squid-users] ntlm authentication from Marcin - ONET on 2002-05-28 (squid-users)

From: Marcin - ONET <marcinwasilewski@dont-contact.us>
Date: Tue, 28 May 2002 15:54:10 +0200

I have only one "easy for you" question.
I configure squid like this:
/configure --prefix=/usr \
            --exec-prefix=/usr \
            --bindir=/usr/bin \
            --sbindir=/usr/sbin \
            --libexecdir=/usr/lib/squid \
            --sysconfdir=/etc \
            --localstatedir=/var/spool/squid \
            --enable-delay-pools \
            --enable-auth=ntlm,basic \
            --enable-useragent-log \

In /etc/squid.conf

http_port 8080
cache_dir ufs /var/spool/squid/10 10 10
cache_access_log /var/log/squid/access.log
cache_log /var/log/squid/cache.log
cache_store_log /var/log/squid/store.log
pid_filename /var/run/squid.pid

auth_param ntlm program /home/squid/ntlm_auth -d domain/pdc domain/bdc
auth_param ntlm children 5
auth_param ntlm max_challenge_reuses 0
auth_param ntlm max_challenge_lifetime 2 minutes

acl net src x.x.x.x/x.x.x.x
acl pass proxy_auth REQUIRED
http_access allow net pass

create directories

mkdir /var/spool/squid
chmod 777 /var/spool/squid
mkdir /var/log/squid
chmod 777 /var/log/squid

run squid
cd /usr/bin
./squid -z
./squid

it is a complete step-by-step description for all users who want to use ntlm auth. it's working very good, but my question is:
in this case all domain users have access to www, but how can I make it only for a domain group i.e. www_users or a list of usernames listed in file.
pls help
Marcin
Received on Tue May 28 2002 - 07:55:33 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:08:14 MST