RE: [squid-users] NT user Ids

try adding http_access deny !domainusers after your http_allow

Regards,
Tony

-----Original Message-----
From: Henrik Nordstrom [mailto:hno@marasystems.com]
Sent: Thursday, 20 June 2002 10:38pm
To: Peter Whysall; 'Rohit Peyyeti'; 'squid-users@squid-cache.org'
Subject: Re: [squid-users] NT user Ids

Looks correct.

Aer you sure you have ordered your http_access lines correctly? Remember
that
the first http_access line that matches the request is applied.

Regards
Henrik

Peter Whysall wrote:
> > -----Original Message-----
> > From: Henrik Nordström [mailto:hno@marasystems.com]
> > Sent: 17 June 2002 19:32
> > To: Rohit Peyyeti; squid-users@squid-cache.org
> > Subject: Re: [squid-users] NT user Ids
> >
> >
> > No, but with Squid-2.5 you can have the users automatically
> > authenticate as
> > the user they are logged in as.
>
> Could you outline this process? I've got Squid 2.5, a Windows NT domain
and
> I'm struggling with this.
>
> I've plugged a bunch of stuff into squid.conf like so:
>
> ...
>
> auth_param ntlm program /usr/lib/squid/ntlm_auth domain/pdc domain/bdc1
> domain/bdc2
> auth_param ntlm children 5
> auth_param ntlm max_challenge_reuses 10
>
> acl domainusers proxy_auth REQUIRED
>
> http_access allow domainusers
>
> ...
>
> The proxy is working just fine, it's just not logging NT usernames.
>
> Regards
>
> Peter.
> This message, including attachments, is intended only for the use by the
> person(s) to whom it is addressed. It may contain information which is
> privileged and confidential. Copying or use by anybody else is not
> authorised. If you are not the intended recipient, please contact the
> sender as soon as possible. The views expressed in this communication may
> not necessarily be the views held by Serco Integrated Transport.

Downs MicroSystems Pty Ltd
145 Margaret Street
Toowoomba Qld 4350
Ph. (07) 4639 3344 Fax (07) 4639 3820

Important Disclaimer and Warning

Downs MicroSystems does not represent or warrant that any attached files are
free from computer viruses or other defects. The attached files are
provided, and may only be used, on the basis that the user assumes all
responsibility for any loss, damage or consequences resulting directly or
indirectly from use of the attached files. The liability of Downs
MicroSystems in any event is limited to either the resupply of the attached
files or the cost of having the attached files resupplied.

NOTE: The views expressed by the individual in this message do not
necessarily reflect those of the organisation.

Downs MicroSystems is committed to protecting the privacy of individuals,
and is bound by the principles of the Commonwealth Privacy Act (1988).
Should you wish to view our Privacy Policy, please visit
www.downsmicro.com.au.

The information contained in this message is confidential and may be legally
privileged. The message is intended solely for the addressee(s). If you are
not the intended recipient, you are hereby notified that any use,
dissemination, or reproduction is strictly prohibited and may be unlawful.
If you are not the intended recipient, please contact the sender by return
e-mail and destroy all copies of the original message.
Received on Thu Jun 20 2002 - 20:01:44 MDT