If you use Kerberos and NTLM do not use the same AD account. Samba will
update the AD account (e.g. change account password after x days) and
msktutil does the same. So you will always have a problem if you do not use
seperate AD accounts and there is nor reason to use the same.
Markus
"JC Putter" <jcputter_at_gmail.com> wrote in message
news:CAKKrXOnzPA0F20WfM05OiJPV=Hs3azen0u+K56mht4EiFwECdA_at_mail.gmail.com...
> If I rejoin the account using net ads join the RPC trust is
> established as soon as you do a msktutil update the trust fails...
>
> Anyone know of a workaround ?
>
>
>
> On Fri, Feb 22, 2013 at 1:25 PM, JC Putter <jcputter_at_gmail.com> wrote:
>> I followed the guide below as a starting point for my squid proxy,
>> however authentication fails after a day or so (i think due to account
>> reset)
>>
>> I am using squid 3.2.6 with msktutil
>>
>> ERROR: Negotiate Authentication validating user. Error returned 'BH
>> NT_STATUS_ACCESS_DENIED'
>>
>> I am running a cronjob daily with msktutil --auto-update, but from the
>> message above this seems more like samba related issue.
>>
>> anyone seen this or have suggestions ?
>>
>>
>> http://wiki.squid-cache.org/ConfigExamples/Authenticate/WindowsActiveDirectory
>
Received on Fri Feb 22 2013 - 18:41:14 MST
This archive was generated by hypermail 2.2.0 : Sat Feb 23 2013 - 12:00:04 MST