[squid-users] R: [squid-users] RE: Error with ntlm authentication from Guido Serassio on 2009-05-12 (squid-users)

From: Guido Serassio <guido.serassio_at_acmeconsulting.it>
Date: Tue, 12 May 2009 19:45:43 +0200

Hi,

The errors that you can see in the event log of your machine are not related to Squid, but are the symptom of some malfunction in the acces to AD from the machine itself.
So likely any ntlm problem could be related.

But, what is the helpers command line in squid.conf ?

Regards

Guido Serassio

Acme Consulting S.r.l. - Microsoft Certified Partner
Via Lucia Savarino, 1 10098 - Rivoli (TO) - ITALY
Tel. : +39.011.9530135 Fax. : +39.011.9781115
Email: info_at_acmeconsulting.it
WWW: http://www.acmeconsulting.it/

> -----Messaggio originale-----
> Da: Delgado Contreras, Verónica [mailto:vdelgado_at_cajadeburgos.es]
> Inviato: martedì 12 maggio 2009 8.20
> A: squid-users_at_squid-cache.org
> Oggetto: [squid-users] RE: Error with ntlm authentication
>
>
> Hello,
>
> I´m testing Squid 3 for Windows. I try to configure squid with ntlm
> authentication but I have a error in event viewer-Application.
>
> Type: Error
> User: NT AUTHORITY\SYSTEM
> Computer: LOBO
> Source: Userenv
> Category: None
> Event ID: 1054
> Description:
> Windows cannot obtain the domain controller name for your computer network.
> (An unexpected network error occurred. ). Group Policy processing aborted.
>
> For more information, see Help and Support Center at
> http://go.microsoft.com/fwlink/events.asp.
>
>
>
>
> And the “cache .log” show this:
>
>
>
> ntlm-auth[2828](ntlm_auth.c:385): c:/squid/libexec/mswin_ntlm_auth.exe
> build Mar 6 2009, 23:32:18 starting up...
> ntlm-auth[2828](ntlm_auth.c:391): SSPI initialized OK
> ntlm-auth[796](ntlm_auth.c:385): c:/squid/libexec/mswin_ntlm_auth.exe
> build Mar 6 2009, 23:32:18 starting up...
> ntlm-auth[796](ntlm_auth.c:391): SSPI initialized OK
> ntlm-auth[5620](ntlm_auth.c:385): c:/squid/libexec/mswin_ntlm_auth.exe
> build Mar 6 2009, 23:32:18 starting up...
> ntlm-auth[5620](ntlm_auth.c:391): SSPI initialized OK
> ntlm-auth[2864](ntlm_auth.c:385): c:/squid/libexec/mswin_ntlm_auth.exe
> build Mar 6 2009, 23:32:18 starting up...
> ntlm-auth[2864](ntlm_auth.c:391): SSPI initialized OK
> ntlm-auth[5644](ntlm_auth.c:385): c:/squid/libexec/mswin_ntlm_auth.exe
> build Mar 6 2009, 23:32:18 starting up...
> ntlm-auth[5644](ntlm_auth.c:391): SSPI initialized OK
> 2009/05/11 12:56:47| helperOpenServers: Starting 5
> 'mswin_check_ad_group.exe' processes
> ntlm-auth[3248](ntlm_auth.c:385): c:/squid/libexec/mswin_ntlm_auth.exe
> build Mar 6 2009, 23:32:18 starting up...
> ntlm-auth[3248](ntlm_auth.c:391): SSPI initialized OK
> ntlm-auth[5980](ntlm_auth.c:385): c:/squid/libexec/mswin_ntlm_auth.exe
> build Mar 6 2009, 23:32:18 starting up...
> ntlm-auth[5980](ntlm_auth.c:391): SSPI initialized OK
> /mswin_check_ad_group.exe[3012]: Member of Domain DODES
>
> /mswin_check_ad_group.exe[3012]: Into forest cajadeburgos.des
>
> /mswin_check_ad_group.exe[3012]: External ACL win32 group helper build Mar
> 6 2009, 23:48:40 starting up...
>
> /mswin_check_ad_group.exe[3012]: Domain Global group mode enabled using
> 'cajadeburgos.de' as default domain.
>
> ntlm-auth[5664](ntlm_auth.c:385): c:/squid/libexec/mswin_ntlm_auth.exe
> build Mar 6 2009, 23:32:18 starting up...
> ntlm-auth[5664](ntlm_auth.c:391): SSPI initialized OK
> /mswin_check_ad_group.exe[1160]: Member of Domain DODES
>
> /mswin_check_ad_group.exe[1160]: Into forest cajadeburgos.des
>
> /mswin_check_ad_group.exe[1160]: External ACL win32 group helper build Mar
> 6 2009, 23:48:40 starting up...
>
> /mswin_check_ad_group.exe[1160]: Domain Global group mode enabled using
> 'cajadeburgos.de' as default domain.
>
> /mswin_check_ad_group.exe[3268]: Member of Domain DODES
>
> /mswin_check_ad_group.exe[3268]: Into forest cajadeburgos.des
>
> /mswin_check_ad_group.exe[3268]: External ACL win32 group helper build Mar
> 6 2009, 23:48:40 starting up...
>
> /mswin_check_ad_group.exe[3268]: Domain Global group mode enabled using
> 'cajadeburgos.de' as default domain.
>
> /mswin_check_ad_group.exe[5656]: Member of Domain DODES
>
> /mswin_check_ad_group.exe[5656]: Into forest cajadeburgos.des
>
> /mswin_check_ad_group.exe[5656]: External ACL win32 group helper build Mar
> 6 2009, 23:48:40 starting up...
>
> /mswin_check_ad_group.exe[5656]: Domain Global group mode enabled using
> 'cajadeburgos.de' as default domain.
>
> 2009/05/11 12:56:47| User-Agent logging is disabled.
> 2009/05/11 12:56:47| Referer logging is disabled.
> /mswin_check_ad_group.exe[3016]: Member of Domain DODES
>
> /mswin_check_ad_group.exe[3016]: Into forest cajadeburgos.des
>
> /mswin_check_ad_group.exe[3016]: External ACL win32 group helper build Mar
> 6 2009, 23:48:40 starting up...
>
> /mswin_check_ad_group.exe[3016]: Domain Global group mode enabled using
> 'cajadeburgos.de' as default domain.
>
> 2009/05/11 12:56:47| Unlinkd pipe opened on FD 428
> 2009/05/11 12:56:47| Local cache digest enabled; rebuild/rewrite every
> 3600/3600 sec
> 2009/05/11 12:56:47| Swap maxSize 1024000 KB, estimated 78769 objects
> 2009/05/11 12:56:47| Target number of buckets: 3938
> 2009/05/11 12:56:47| Using 8192 Store buckets
> 2009/05/11 12:56:47| Max Mem size: 8192 KB
> 2009/05/11 12:56:47| Max Swap size: 1024000 KB
> 2009/05/11 12:56:48| Version 1 of swap file with LFS support detected...
> 2009/05/11 12:56:48| Rebuilding storage in c:/squid/var/cache (CLEAN)
> 2009/05/11 12:56:48| Using Least Load store dir selection
> 2009/05/11 12:56:48| Set Current Directory to c:/squid/var/cache
> 2009/05/11 12:56:48| Loaded Icons.
> 2009/05/11 12:56:48| Accepting HTTP connections at 172.25.49.11, port 80,
> FD 434.
> 2009/05/11 12:56:48| HTCP Disabled.
> 2009/05/11 12:56:48| Ready to serve requests.
> 2009/05/11 12:56:48| Done reading c:/squid/var/cache swaplog (951 entries)
> 2009/05/11 12:56:48| Finished rebuilding storage from disk.
> 2009/05/11 12:56:48| 951 Entries scanned
> 2009/05/11 12:56:48| 0 Invalid entries.
> 2009/05/11 12:56:48| 0 With invalid flags.
> 2009/05/11 12:56:48| 951 Objects loaded.
> 2009/05/11 12:56:48| 0 Objects expired.
> 2009/05/11 12:56:48| 0 Objects cancelled.
> 2009/05/11 12:56:48| 0 Duplicate URLs purged.
> 2009/05/11 12:56:48| 0 Swapfile clashes avoided.
> 2009/05/11 12:56:48| Took 0.34 seconds (2766.19 objects/sec).
> 2009/05/11 12:56:48| Beginning Validation Procedure
> 2009/05/11 12:56:48| Completed Validation Procedure
> 2009/05/11 12:56:48| Validated 1927 Entries
> 2009/05/11 12:56:48| store_swap_size = 8024
> 2009/05/11 12:56:49| storeLateRelease: released 0 objects
> ntlm-auth[3376](ntlm_auth.c:227): Got 'YR
> TlRMTVNTUAABAAAAB7IIogUABQA3AAAADwAPACgAAAAFASgKAAAAD1czMDY0U0lTVEVNNDEyM0
> RPREVT' from Squid
> ntlm-auth[3376](ntlm_auth.c:183): attempting SSPI challenge retrieval
> ntlm-auth[3376](ntlm_auth.c:186): Got it
> ntlm-auth[3376](ntlm_auth.c:266): sending 'TT
> TlRMTVNTUAACAAAACgAKADgAAAAFgomiDSA9TjNm89EAAAAAAAAAAJQAlABCAAAABQLODgAAAA
> 9EAE8ARABFAFMAAgAKAEQATwBEAEUAUwABAAgATABPAEIATwAEACAAYwBhAGoAYQBkAGUAYgB1
> AHIAZwBvAHMALgBkAGUAcwADACoATABPAEIATwAuAGMAYQBqAGEAZABlAGIAdQByAGcAbwBzAC
> 4AZABlAHMABQAgAGMAYQBqAGEAZABlAGIAdQByAGcAbwBzAC4AZABlAHMAAAAAAA==' to
> squid
> ntlm-auth[3376](ntlm_auth.c:227): Got 'KK
> TlRMTVNTUAADAAAAGAAYAIoAAAAYABgAogAAAAoACgBIAAAAGgAaAFIAAAAeAB4AbAAAAAAAAA
> C6AAAABYKIogUBKAoAAAAPRABPAEQARQBTAEEAZABtAGkAbgBpAHMAdAByAGEAdABvAHIAVwAz
> ADAANgA0AFMASQBTAFQARQBNADQAMQAyADMAMpWZ5BGDLckAAAAAAAAAAAAAAAAAAAAA11H7te
> bZ4CuRk+g95Dm0zM6uiw9ortI2' from Squid
> ntlm-auth[3376](libntlmssp.c:269): checking domaicn: 'DODES', user:
> 'Administrator'
> /mswin_check_ad_group.exe[3012]: Got 'dodes%5Cadministrator
> c:/squid/etc/DomainUsers' from Squid (length: 46).
>
> /mswin_check_ad_group.exe[3012]: Valid_Global_Groups: checking group
> membership of 'dodes\administrator'.
>
> /mswin_check_ad_group.exe DsGetDcName() failed.'
> ntlm-auth[5888](ntlm_auth.c:227): Got 'YR
> TlRMTVNTUAABAAAAB7IIogUABQA3AAAADwAPACgAAAAFASgKAAAAD1czMDY0U0lTVEVNNDEyM0
> RPREVT' from Squid
> ntlm-auth[5888](ntlm_auth.c:183): attempting SSPI challenge retrieval
> ntlm-auth[5888](ntlm_auth.c:186): Got it
> ntlm-auth[5888](ntlm_auth.c:266): sending 'TT
> TlRMTVNTUAACAAAACgAKADgAAAAFgomiKm9ZWYx42iUAAAAAAAAAAJQAlABCAAAABQLODgAAAA
> 9EAE8ARABFAFMAAgAKAEQATwBEAEUAUwABAAgATABPAEIATwAEACAAYwBhAGoAYQBkAGUAYgB1
> AHIAZwBvAHMALgBkAGUAcwADACoATABPAEIATwAuAGMAYQBqAGEAZABlAGIAdQByAGcAbwBzAC
> 4AZABlAHMABQAgAGMAYQBqAGEAZABlAGIAdQByAGcAbwBzAC4AZABlAHMAAAAAAA==' to
> squid
> ntlm-auth[5888](ntlm_auth.c:227): Got 'KK
> TlRMTVNTUAADAAAAGAAYAIoAAAAYABgAogAAAAoACgBIAAAAGgAaAFIAAAAeAB4AbAAAAAAAAA
> C6AAAABYKIogUBKAoAAAAPRABPAEQARQBTAEEAZABtAGkAbgBpAHMAdAByAGEAdABvAHIAVwAz
> ADAANgA0AFMASQBTAFQARQBNADQAMQAyADMAeSeUuCuU9W8AAAAAAAAAAAAAAAAAAAAAS1A3HJ
> C0hQNSHHJkIAWFKfpFuYbbQSY3' from Squid
> ntlm-auth[5888](libntlmssp.c:269): checking domain: 'DODES', user:
> 'Administrator'
> ntlm-auth[1488](ntlm_auth.c:227): Got 'YR
> TlRMTVNTUAABAAAAB7IIogUABQA3AAAADwAPACgAAAAFASgKAAAAD1czMDY0U0lTVEVNNDEyM0
> RPREVT' from Squid
> ntlm-auth[1488](ntlm_auth.c:183): attempting SSPI challenge retrieval
> ntlm-auth[1488](ntlm_auth.c:186): Got it
> ntlm-auth[1488](ntlm_auth.c:266): sending 'TT
> TlRMTVNTUAACAAAACgAKADgAAAAFgomieoupMy56RPkAAAAAAAAAAJQAlABCAAAABQLODgAAAA
> 9EAE8ARABFAFMAAgAKAEQATwBEAEUAUwABAAgATABPAEIATwAEACAAYwBhAGoAYQBkAGUAYgB1
> AHIAZwBvAHMALgBkAGUAcwADACoATABPAEIATwAuAGMAYQBqAGEAZABlAGIAdQByAGcAbwBzAC
> 4AZABlAHMABQAgAGMAYQBqAGEAZABlAGIAdQByAGcAbwBzAC4AZABlAHMAAAAAAA==' to
> squid
> ntlm-auth[1488](ntlm_auth.c:227): Got 'KK
> TlRMTVNTUAADAAAAGAAYAIoAAAAYABgAogAAAAoACgBIAAAAGgAaAFIAAAAeAB4AbAAAAAAAAA
> C6AAAABYKIogUBKAoAAAAPRABPAEQARQBTAEEAZABtAGkAbgBpAHMAdAByAGEAdABvAHIAVwAz
> ADAANgA0AFMASQBTAFQARQBNADQAMQAyADMA1ZT+19V97OkAAAAAAAAAAAAAAAAAAAAA8Blnof
> qUp9IgkhbtwIrMXehHu2rY9CmE' from Squid
> ntlm-auth[1488](libntlmssp.c:269): checking domain: 'DODES', user:
> 'Administrator'
> ntlm-auth[2968](ntlm_auth.c:227): Got 'YR
> TlRMTVNTUAABAAAAB7IIogUABQA3AAAADwAPACgAAAAFASgKAAAAD1czMDY0U0lTVEVNNDEyM0
> RPREVT' from Squid
> ntlm-auth[2968](ntlm_auth.c:183): attempting SSPI challenge retrieval
> ntlm-auth[2968](ntlm_auth.c:186): Got it
> ntlm-auth[2968](ntlm_auth.c:266): sending 'TT
> TlRMTVNTUAACAAAACgAKADgAAAAFgomiUIsf25S7gqMAAAAAAAAAAJQAlABCAAAABQLODgAAAA
> 9EAE8ARABFAFMAAgAKAEQATwBEAEUAUwABAAgATABPAEIATwAEACAAYwBhAGoAYQBkAGUAYgB1
> AHIAZwBvAHMALgBkAGUAcwADACoATABPAEIATwAuAGMAYQBqAGEAZABlAGIAdQByAGcAbwBzAC
> 4AZABlAHMABQAgAGMAYQBqAGEAZABlAGIAdQByAGcAbwBzAC4AZABlAHMAAAAAAA==' to
> squid
> ntlm-auth[2968](ntlm_auth.c:227): Got 'KK
> TlRMTVNTUAADAAAAGAAYAIoAAAAYABgAogAAAAoACgBIAAAAGgAaAFIAAAAeAB4AbAAAAAAAAA
> C6AAAABYKIogUBKAoAAAAPRABPAEQARQBTAEEAZABtAGkAbgBpAHMAdAByAGEAdABvAHIAVwAz
> ADAANgA0AFMASQBTAFQARQBNADQAMQAyADMAbyG+h4SorQUAAAAAAAAAAAAAAAAAAAAAd77QUF
> RWePBef5FF6BB6B9Zglk4maUIg' from Squid
> ntlm-auth[2968](libntlmssp.c:269): checking domain: 'DODES', user:
> 'Administrator'
> ntlm-auth[4072](ntlm_auth.c:227): Got 'YR
> TlRMTVNTUAABAAAAB7IIogUABQA3AAAADwAPACgAAAAFASgKAAAAD1czMDY0U0lTVEVNNDEyM0
> RPREVT' from Squid
> ntlm-auth[4072](ntlm_auth.c:183): attempting SSPI challenge retrieval
> ntlm-auth[4072](ntlm_auth.c:186): Got it
>
>
>
>
>
>
>
>
> What can be the problem?.
>
> Thanks.
>
>
> Verónica Delgado
> Depto. Sistemas
> CAJA DE BURGOS
> C: 947 258 495
> : vdelgado_at_cajadeburgos.es
>

Received on Tue May 12 2009 - 17:45:53 MDT

This archive was generated by hypermail 2.2.0 : Wed May 13 2009 - 12:00:02 MDT