LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices

Reply
 
Search this Thread
Old 06-22-2003, 08:39 PM   #1
dulantha
LQ Newbie
 
Registered: Jun 2003
Location: Auckland, New Zealand.
Distribution: Custom on 2.0.36 kernel, RH6, RH7, RH7.1, RH8, RH9
Posts: 3

Rep: Reputation: 0
Squid and Active Directory


Hi,

Questions:
Has anyone tried Active Directory authentication for Squid?
Is NTLM auth still supported in a Native mode WIN2k domain?
If not what is the new way of IE doing auth without asking user?

Status so far:
Win2K domain is in Native mode. (out of my control)
Squid is working fine with smb_auth with Samba2.5 and Samba3.0beta.
Works well for authorising Windows groups by changing permissions on a file on the ADS servers.

Problems:
Passwords sent in plain text with smb_auth is making me very nervous.
Annoying problem of Auth Request popping up for every instance of IE.
Uncertain of whether Windows still uses/supports NTLM to achieve user-less authentication of I.E. to proxy.


Hmm I think that about sums my situation up.
 
Old 11-12-2003, 06:06 PM   #2
gomix100
LQ Newbie
 
Registered: Nov 2003
Location: Caracas
Distribution: Red Hat
Posts: 13

Rep: Reputation: 0
Hi

I'm tyring Active Directory authentication with squid_ldap_auth but have no luck yet.

I have the module talking to the AD but it refuses to authenticate the users saying: invalid credentials.

It seems that i need to "bind" to the server because it does not allow anonymous queries for such thing like authentication.

When i tried that (with administrator login/password), i used ldapsearch tool to check the binding but again i got rejected with the same message: invalid credentials.

Then i started to think that it might be other thing: the authentication method. I don't manage the details behind AD but it looks like it needs Kerberos authentication (i was using simple authenticatio with clear passwords in the net).

I don't know if that helps u but i must pool this off asap. I do understand squid enough but no the ldap protocol neither AD. Do u know if Kerberos is really needed? My other problem is the "ldap filter part"... any clues on how should build this ldap filter?

Regards

Guillermo
 
Old 10-21-2004, 08:24 AM   #3
BuRnInICE
LQ Newbie
 
Registered: Aug 2003
Distribution: RedHat 7.3
Posts: 6

Rep: Reputation: 0
I'm pretty sure kerberous is needed. I got a step further than you by getting kerberous working, but then I seem to remember having no idea what to do next :P
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Squid Authentication to Active Directory BuRnInICE Red Hat 2 06-03-2011 05:55 AM
Squid Ldap Auth & Active Directory password prompt in browser ali247 Linux - Networking 3 05-06-2006 12:08 AM
AUthenticat users in Active Directory through Squid sharma_arpit Linux - Networking 3 10-14-2005 08:40 AM
Squid Authentication Active Directory BuRnInICE Linux - Networking 1 10-27-2004 09:02 AM
Squid authentication using Active Directory Groups will not work kepler Linux - Networking 1 05-25-2004 01:54 PM


All times are GMT -5. The time now is 11:32 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration