RE: [squid-users] Authing to ADS NT Groups in a file

From: Jason Oakley <Jason.Oakley@dont-contact.us>
Date: Thu, 28 Oct 2004 09:06:21 +1000

According to the docs:
acl ProxyUsers external NT_global_group "/usr/local/squid/etc/DomainUsers"
and the DomainUsers files will contain only the following line:
"Domain Users"

I tried this:
acl AllowedNTUsers external NT_global_group "/usr/local/etc/squid/acls/allowedntgroups"
acl AuthorizedUsers proxy_auth REQUIRED

in allowedntgroups:
"IT Dept"
but I get this:

FATAL: Bungled squid.conf line 1840: acl AllowedNTUsers external NT_global_group "/usr/local/etc/squid/acls/allowedntgroups"
Squid Cache (Version 2.5.STABLE7): Terminated abnormally.

-----Original Message-----
From: squid-users-return-49441-Jason.Oakley=aapt.com.au@squid-cache.org
[mailto:squid-users-return-49441-Jason.Oakley=aapt.com.au@squid-cache.or
g]On Behalf Of Jason Oakley
Sent: Thursday, 28 October 2004 8:47 AM
To: squid-users@squid-cache.org
Subject: [squid-users] Authing to ADS NT Groups in a file

I have Squid authing to ADS via Samba and I need to add certain groups to have access.

It's something like this:
acl unrestrictedusers external nt_group "/usr/local/etc/squid/acls/allowedntgroups"

but that doesn't work.
Of course, being NT groups, they have spaces in the names.. eg "IT Dept" so a file (allowedntgroups) to list the groups would be preferable.

What am I doing wrong?

TIA
--------------
Jason Oakley
Robina Helpdesk
AAPT Limited
Ph: 07 5562 4359

Jason.Oakley@aapt.com.au

------------------------------------------------------------------------------
This communication, including any attachments, is confidential. If
 you are not the intended recipient, you should not read it - please
 contact me immediately, destroy it, and do not copy or use any part of
 this communication or disclose anything about it.

------------------------------------------------------------------------------

------------------------------------------------------------------------------
This communication, including any attachments, is confidential. If
 you are not the intended recipient, you should not read it - please
 contact me immediately, destroy it, and do not copy or use any part of
 this communication or disclose anything about it.

------------------------------------------------------------------------------

------------------------------------------------------------------------------
This communication, including any attachments, is confidential. If
 you are not the intended recipient, you should not read it - please
 contact me immediately, destroy it, and do not copy or use any part of
 this communication or disclose anything about it.

------------------------------------------------------------------------------
Received on Wed Oct 27 2004 - 17:06:52 MDT

This archive was generated by hypermail pre-2.1.9 : Mon Nov 01 2004 - 12:00:02 MST