Re: [squid-users] ntlm_auth for windows clients that arent part of the default domain

From: Carlos Zottmann <zottmann@dont-contact.us>
Date: Tue, 28 Jun 2005 09:49:07 -0300

Henrik Nordstrom wrote:

> On Mon, 27 Jun 2005, Carlos Zottmann wrote:
>
>> I think that it makes difference for NTLM as we use DansGuardian as
>> an upstream proxy, and we forward the client´s username. It is being
>> sent to DansGuardian without the domain portion. Unfortunately I am
>> not sure if this parameter is the reason, as we have changed it when
>> we changed the samba version, a while ago.
>
>
> This is dependent on the Samba version from what I have been told, but
> maybe you are right.
>
> In any case what you describe is however pure post-processing of the
> username to not include the domain component if it is the same as the
> default domain and does not make any difference on the client side.
>
> Regards
> Henrik

I am under the impression that, when our basic authentication was
working, the windows that was showed by the browser did have a domain
field, but we could leave it blank, and the authentication happened with
the default domain.

Regards,
Carlos.
Received on Tue Jun 28 2005 - 06:49:13 MDT

This archive was generated by hypermail pre-2.1.9 : Fri Jul 01 2005 - 12:00:03 MDT