Hi,
At 15.09 05/02/2005, Flávio Henrique wrote:
>Hi guys.
>I hope someone can cast a light in my problem here.
>
>I'm using squid-2.5STABLE4 on Mandrake 10.
>I'm using winbind authentication and it works fine.
>But I trying to use external_acl_type too, but not working. Always I got
>Access Denied,
>even when the script returns OK (at least I got "OK" in console).
>
>Please, someone can see anything wrong here:
>
>thank you in advance.
>
>SQUID.CONF
>(...)
> auth_param ntlm program /usr/bin/ntlm_auth
>--helper-protocol=squid-2.5-ntlmssp
> auth_param ntlm children 5
> auth_param ntlm max_challenge_reuses 0
> auth_param ntlm max_challenge_lifetime 20 minutes
>
> auth_param basic program /usr/bin/ntlm_auth
> --helper-protocol=squid-2.5-basic
>
> auth_param basic children 5
> auth_param basic realm Informe seu usuário e senha
> auth_param basic credentialsttl 2 hours
>
>external_acl_type autorizacao %LOGIN "/etc/squid/modulos/users.sh"
>
>acl autenticados proxy_auth REQUIRED
>acl autorizados external autorizacao
>acl LAN1 src 192.168.100.0/24
>http_access allow LAN1 autorizados
>http_access deny all
There is a logical error here: you don't trigger the user authentication, try:
http_access allow autenticados LAN1 autorizados
Regards
Guido
-
========================================================
Guido Serassio
Acme Consulting S.r.l. - Microsoft Certified Partner
Via Gorizia, 69 10136 - Torino - ITALY
Tel. : +39.011.3249426 Fax. : +39.011.3293665
Email: guido.serassio@acmeconsulting.it
WWW: http://www.acmeconsulting.it/
Received on Sat Feb 05 2005 - 07:31:51 MST
This archive was generated by hypermail pre-2.1.9 : Tue Mar 01 2005 - 12:00:01 MST