Be aware that winbind is subject to any account resatrictions that AD puts
on that account. FOr example, if an account is set to change password on
next logon, it will fail, it will also fail if the user's account has
specific workstations set in the 'logon to' tab in account. To get around
that one, add the linux box (netbios name) as a workstation which the user
is allowed to log into. You will also get problems if the account has
specific logon hours set and you access web outside those hours.
Regards,
Tony
-----Original Message-----
From: JOHNSON DAVID R
To: squid-users@squid-cache.org
Sent: 6/08/2003 8:51 AM
Subject: [squid-users] AD authentication
When i add a user to AD and prompt the user to have to change
their
password at next logon i cannot get the account to authenticate.
Does anyone know a workaround or something to fix this?
new user added to AD and box checked for user to change password
at
next logon, web browser connects to squid, asked for username/password
pair,
input pair, authentication fails.
if i login to a workstation and change the password then i am
able
to use the account with te proxy, else fail.
Downs MicroSystems Pty Ltd
145 Margaret Street
Toowoomba Qld 4350
Ph. (07) 4639 3344 Fax (07) 4639 3820
Important Disclaimer and Warning
Downs MicroSystems does not represent or warrant that any attached files are
free from computer viruses or other defects. The attached files are
provided, and may only be used, on the basis that the user assumes all
responsibility for any loss, damage or consequences resulting directly or
indirectly from use of the attached files. The liability of Downs
MicroSystems in any event is limited to either the resupply of the attached
files or the cost of having the attached files resupplied.
NOTE: The views expressed by the individual in this message do not
necessarily reflect those of the organisation.
Downs MicroSystems is committed to protecting the privacy of individuals,
and is bound by the principles of the Commonwealth Privacy Act (1988).
Should you wish to view our Privacy Policy, please visit
www.downsmicro.com.au.
The information contained in this message is confidential and may be legally
privileged. The message is intended solely for the addressee(s). If you are
not the intended recipient, you are hereby notified that any use,
dissemination, or reproduction is strictly prohibited and may be unlawful.
If you are not the intended recipient, please contact the sender by return
e-mail and destroy all copies of the original message.
Received on Tue Aug 05 2003 - 19:35:48 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:18:43 MST