LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Networking (https://www.linuxquestions.org/questions/linux-networking-3/)
-   -   cannot authenticate users in squid through winbind (https://www.linuxquestions.org/questions/linux-networking-3/cannot-authenticate-users-in-squid-through-winbind-210651/)

bahadur 07-28-2004 12:09 PM
cannot authenticate users in squid through winbind
 
ok i have configured squid accurately and it is working

now i want to authenticate users through winbind. first when every i try the ntlm protocol it doesnt recognizes it so i have to use only the basic scheme. plz tell me why is it not recognizing it and what to do about it. then the second problem is

here is my squid.conf



visible_hostname squidserver
cache_peer 10.10.4.65 parent 80 0 no-query default
acl all src 0.0.0.0/0.0.0.0
never_direct allow all
auth_param basic program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-basic --require-membership-of='LINWIN.EDU.PK/Domain Users'
auth_param basic children 5
auth_param basic realm LINWIN.EDU.PK
auth_param basic credentialsttl 2 hours
acl AuthorizedUsers proxy_auth REQUIRED
http_access allow AuthorizedUsers
http_port 3128
debug_options ALL,1

now i do get a prompt when i try to access a website but it is not letting me authenticate.

i checked the cahce.log file and this is what it tells me

2004/07/29 11:06:40, 0] utils/ntlm_auth.c:get_require_membership_sid(237)
Winbindd lookupname failed to resolve 'LINWIN.EDU.PK/Domain into a SID!

now why is it taking 'LINWIN.EDU.PK/Domain instead of the real 'LINWIN.EDU.PK/Domain Users'

whats wrong and why is it ommiting the word Users. although i have placed it inside the comma.

jhumeston 07-28-2004 06:51 PM
Remember linux doesnt have spaces in group or user names. You will have to add a winbind seperator to your configuration. Im not familiar with squid, but in samba its just the case of adding the line:
winbind seperator=+

then the group domain+users can be used.


All times are GMT -5. The time now is 08:22 AM.