On Wed, Apr 11, 2007, Alexandre Mackow wrote:
> Hi all,
> I used squid as stand alone for my users, it works great...
> I try to authentificate my user on Active Directory...
> The faq give me this link :
>
> http://wiki.squid-cache.org/ConfigExamples/WindowsAuthenticationNTLM?highlight=%28CategoryConfigExample%29
>
> My Debian is intergrated to my AD, wbinfo -u is ok ....
>
> In my squid.conf, I add:
>
> auth_param ntlm program
> /usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp
Thats one line, right? Whats cache.log say? Does the squid user/group have access to the winbind
unix socket?
> auth_param ntlm children 10
> #auth_param ntlm max_challenge_reuses 0
> #auth_param ntlm max_challenge_lifetime 2 minutes
> #auth_param ntlm use_ntlm_negotiate off
> auth_param basic program
> /usr/bin/ntlm_auth --helper-protocol=squid-2.5-basic
Thats one line too, right?
> auth_param basic children 5
> auth_param basic realm "MySquidServer"
> auth_param basic credentialsttl 2 hours
> auth_param basic casesensitive off
> authenticate_cache_garbage_interval 10 seconds
>
> # Credentials past their TTL are removed from memory
> authenticate_ttl 0 seconds
> ------------------------------
> acl lcl src 192.168.0.0/16
> acl auth proxy_auth REQUIRED
>
> http_access allow lcl auth
> http_access deny all
> miss_access allow all
> icp_access deny all
>
> Impossible to connect.... Does anybody got a link ?
> Thanks a lot for you (futur) help.
> ++
-- - Xenion - http://www.xenion.com.au/ - VPS Hosting - Commercial Squid Support - - $25/pm entry-level bandwidth-capped VPSes available in WA -Received on Wed Apr 11 2007 - 10:51:38 MDT
This archive was generated by hypermail pre-2.1.9 : Tue May 01 2007 - 12:00:01 MDT