On Dec 21, 2007 2:23 PM, Filip Ruymen <filip.ruymen@gmail.com> wrote:
> Hello,
>
> here is the configuration I'm using:
>
> auth_param basic program /usr/lib/squid/ncsa_auth /etc/squid/passwd
> auth_param basic children 10
> auth_param basic realm Squid proxy-caching web server
> auth_param basic credentialsttl 2 hour
> auth_param ntlm program /usr/lib/squid/ntlm_auth eu.ansell.com/brufps1
> auth_param ntlm children 10
>
> Both of the authentication ways are working fine on their own.
> When I configure them both, the following happens:
> On a machine joined on the domain, but logged in as local user, it
> asks for a username and password (which is normal expected behaviour).
> When I enter the username and password, it asks me over and over again
> for the username and password.
>
> I think it's using the ntlm_auth at that time instead of the basic auth.
The easiest way of knowing is by looking at the authentication prompt
window. Two lines -> basic. Three lines -> ntlm.
> Is there a way I can change this so that when a local user (not a
> domain user) logs on, they have to enter the basic authentication?
No. You have no way of knowing whether one user is local or domain
until she has tried logging on - and failed auth if she's a local
user.
--
/kinkie
Received on Fri Dec 21 2007 - 15:19:40 MST
This archive was generated by hypermail pre-2.1.9 : Tue Jan 01 2008 - 12:00:02 MST