Hi,
At 11.44 11/12/2005, Noc Phibee wrote:
>Anyone can answer at my question ?
>
>Ok a large systems, i put :
>
>auth_param ntlm children 50
>auth_param ntlm max_challenge_lifetime 10 minutes
>
>auth_param basic children 50
>auth_param basci max_challenge_lifetime 10 minutes
This parameter doesn't exist.
>for no put a big request on the PDC ?
Don't enable challenge reuse with a so large AD environment:
challenge reuse is know to trigger many stability problems in Squid.
You should use "auth_param ntlm use_ntlm_negotiate on" in squid.conf .
But using NTLM, with 20000 users a big authentication load on your
DCs is predictable, with or without NTLM Negotiate.
You should verify the number of used helpers using cachemgr.cgi:
- Basic helpers are not heavy used in NTLM environments, so 50 may be
a too large value
- Insted, NTLM helpers are heavy used, and 50 could be not enough in peak hours
Regards
Guido
-
========================================================
Guido Serassio
Acme Consulting S.r.l. - Microsoft Certified Partner
Via Lucia Savarino, 1 10098 - Rivoli (TO) - ITALY
Tel. : +39.011.9530135 Fax. : +39.011.9781115
Email: guido.serassio@acmeconsulting.it
WWW: http://www.acmeconsulting.it/
Received on Sun Dec 11 2005 - 04:10:25 MST
This archive was generated by hypermail pre-2.1.9 : Sat Dec 31 2005 - 12:00:02 MST