Yep you are correct the syntax is wrong for the samba 3 ntlm_auth helper. I
have just realized that I am still using the squid ntlm_auth helper, I did
think I switched to the samba one, I know I set winbind up.
Anyway the solution to my problem with windows 2003 was:
"Change LOCAL machine security policy to:
Microsoft Network Server: Digitally Sign Communications (Always) Enabled to
DISABLED Network Security: LAN Manager Authentication Level (not configured)
to Send LM & NTLM - User NTLMv2 If Negotiated"
Thank you
-----Original Message-----
From: Adam Aube [mailto:aaube01@baker.edu]
Sent: 10 September 2004 03:39
To: squid-users@squid-cache.org
Subject: [squid-users] RE: Windows 2003 Strangeness
Charlie Grosvenor wrote:
> Squid.conf:
>
> auth_param ntlm program /usr/bin/ntlm_auth domain/domaincontroller
>
> I am using the NTLM_AUTH binary that comes with samba v3.
I'm amazed it works at all - that is the wrong syntax for the Samba 3
ntlm_auth helper. The correct syntax is (all one line):
auth_param ntlm program /usr/bin/ntlm_auth
--helper-protocol=squid-2.5-ntlmssp
This is in the Authentication FAQ:
http://www.squid-cache.org/Doc/FAQ/FAQ-23.html#ss23.5
Adam
______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email
______________________________________________________________________
______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email
______________________________________________________________________
Received on Fri Sep 10 2004 - 04:27:42 MDT
This archive was generated by hypermail pre-2.1.9 : Fri Oct 01 2004 - 12:00:02 MDT