Hi List !!!!
I'm from Brazil and this is my first post here...
I'm trying do authentication in my Active Directory with Winbind and =
Samba, I'm using FreBSD 6.3 Release, Squid 2.6.STABLE16 and Samba =
3.0.28.
I am having problems with authentication....
I used to Squid 2.5 and I obtained sucess in my authentication... But =
with Squid 2.6 I didn't obtain. Follow the error in my cache.log:
Could not convert sid S-1-5-21-992990153-3527494177-555559510-3105 to =
gid
Could not get groups for user 0
2008/02/26 10:49:56| helperHandleRead: unexpected reply on channel -1 =
from nt_group #1 'OK'
I found this correct, but the error continue: =
http://wiki.squid-cache.org/KnowledgeBase/NoNTLMGroupAuth
Follow my squid.conf, the authenticatio step
#NTLM
auth_param ntlm program /usr/local/bin/ntlm_auth =
--helper-protocol=3Dsquid-2.5-ntlmssp -d 2
auth_param ntlm children 60
auth_param ntlm keep_alive on
#B=E1sico
auth_param basic program /usr/local/bin/ntlm_auth =
--helper-protocol=3Dsquid-2.5-basic
auth_param basic children 10
auth_param basic realm Internet Monitorada
auth_param basic credentialsttl 2 hours
#ACL External para Grupos
external_acl_type nt_group ttl=3D0 concurrency=3D5 %LOGIN =
/usr/local/libexec/squid/wbinfo_group.pl
Follow some tests that I realized:
srv-gw01-sve# wbinfo -u | grep fernando.lima
fernando.lima
srv-gw01-sve# wbinfo -g | grep g-netliberada-sve
g-netliberada-sve
srv-gw01-sve# wbinfo -t
checking the trust secret via RPC calls succeeded
srv-gw01-sve# wbinfo -n g-netliberada-sve
S-1-5-21-992990153-3527494177-555559510-4298 Domain Group (2)
Please, can somebody help-me ???
Thanks !!
Fernando de Lima
Network Administrator
Received on Wed Feb 27 2008 - 04:33:31 MST
This archive was generated by hypermail pre-2.1.9 : Sat Mar 01 2008 - 12:00:05 MST