Re: [squid-users] SquidNT + Access.log + Active Directory

From: Serassio Guido <guido.serassio@dont-contact.us>
Date: Mon, 12 Jul 2004 07:34:41 +0200

Hi,

At 03.12 12/07/2004, Christian C Di Donato wrote:

>Hello All,
>
>I'm been taking a look at this mailing list for quite some time, even found
>some valuable tips and techniques that they helped me out in the past. What
>I have not found (which hopefully someone will point me in the right
>direction) is a method (IE: A documented one) that tells me the following:
>(All Related to SquidNT)
>
> * Usernames within access.log from an Active Directory Domain (Instead of
>IP's or ComputerNames)
>
> * Access Group (from an AD Domain) to have access (or restrict it) to the
>internet
>
>
>Any valid comments would be appreciated and welcomed!

You need to use NTLM or LDAP authentication and external ACL based on LDAP
or native Windows.

See the following documentation:
- win32_ntlm_auth and win32_check_group.txt in SquidNT binary
- Winbind FAQ as reference
http://www.squid-cache.org/Doc/FAQ/FAQ-23.html#ss23.5
- Any thread on this list about NTLM and LDAP

Regards

Guido

-
========================================================
Guido Serassio
Acme Consulting S.r.l. - Microsoft Certified Partner
Via Gorizia, 69 10136 - Torino - ITALY
Tel. : +39.011.3249426 Fax. : +39.011.3293665
Email: guido.serassio@acmeconsulting.it
WWW: http://www.acmeconsulting.it/
Received on Sun Jul 11 2004 - 23:35:25 MDT

This archive was generated by hypermail pre-2.1.9 : Sun Aug 01 2004 - 12:00:01 MDT