I have squid-2.5.STABLE3-6.3E.8 (RedHat ES 3 RPM) configured to do
NTLM authentication using winbind. This works great, however, Java
applets prompt for a login, but never accept it. Is there a way to
get Java applets to work? They work fine through the old proxy that
does basic authentication with LDAP.
Here's my config:
http_port 8080
icp_port 0
cache_peer 127.0.0.1 parent 2543 7 proxy-only no-query
no-netdb-exchange login=*:nopassword default
cache_mem 64 MB
maximum_object_size 25600 KB
cache_dir aufs /var/spool/squid 500 16 256
auth_param ntlm program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp
auth_param ntlm children 25
auth_param ntlm max_challenge_reuses 0
auth_param ntlm max_challenge_lifetime 30 minutes
auth_param basic program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-basic
auth_param basic children 10
auth_param basic realm Web Proxy
auth_param basic credentialsttl 2 hours
acl allow_url dstdomain "/etc/squid/squidbypass.txt"
http_access allow allow_url
external_acl_type nt_group ttl=0 concurrency=5 %LOGIN
/usr/lib/squid/wbinfo_group.pl
acl internetusers external nt_group internet
http_access allow internetusers
half_closed_clients off
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl winbind proxy_auth REQUIRED
http_access deny manager
http_access allow localhost
http_access deny all
http_reply_access allow all
forwarded_for off
never_direct allow all
Thanks,
~M
Received on Tue Jun 21 2005 - 15:35:07 MDT
This archive was generated by hypermail pre-2.1.9 : Fri Jul 01 2005 - 12:00:03 MDT