cannot authenticate users in squid through winbind
ok i have configured squid accurately and it is working
now i want to authenticate users through winbind. first when every i try the ntlm protocol it doesnt recognizes it so i have to use only the basic scheme. plz tell me why is it not recognizing it and what to do about it. then the second problem is here is my squid.conf visible_hostname squidserver cache_peer 10.10.4.65 parent 80 0 no-query default acl all src 0.0.0.0/0.0.0.0 never_direct allow all auth_param basic program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-basic --require-membership-of='LINWIN.EDU.PK/Domain Users' auth_param basic children 5 auth_param basic realm LINWIN.EDU.PK auth_param basic credentialsttl 2 hours acl AuthorizedUsers proxy_auth REQUIRED http_access allow AuthorizedUsers http_port 3128 debug_options ALL,1 now i do get a prompt when i try to access a website but it is not letting me authenticate. i checked the cahce.log file and this is what it tells me 2004/07/29 11:06:40, 0] utils/ntlm_auth.c:get_require_membership_sid(237) Winbindd lookupname failed to resolve 'LINWIN.EDU.PK/Domain into a SID! now why is it taking 'LINWIN.EDU.PK/Domain instead of the real 'LINWIN.EDU.PK/Domain Users' whats wrong and why is it ommiting the word Users. although i have placed it inside the comma. |
Remember linux doesnt have spaces in group or user names. You will have to add a winbind seperator to your configuration. Im not familiar with squid, but in samba its just the case of adding the line:
winbind seperator=+ then the group domain+users can be used. |
All times are GMT -5. The time now is 08:22 AM. |