Hi
i have updated my squid 2.X to 3.X. i use ntlm auth
with this config:
auth_param ntlm program /usr/bin/ntlm_auth
--helper-protocol=squid-2.5-ntlmssp
auth_param ntlm children 15
auth_param ntlm keep_alive on
auth_param basic program /usr/bin/ntlm_auth
--helper-protocol=squid-2.5-basic
auth_param basic children 15
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours
external_acl_type AD_Group children=50 concurrency=50 %LOGIN
/usr/lib/squid/wbinfo_group.pl
acl AllowedADUsers external AD_Group "/etc/squid-ntlm/allowedntgroups"
acl Winbind proxy_auth REQUIRED
http_access allow AllowedADUsers
http_access deny !AllowedADUsers
http_access deny !Winbind
http_access deny all
This configuration work on 2.X and when a user are not into the good
AD group, he can't connect.
On 3.X, he connect all time ....
anyone have a idea of the problems ?
thanks
jerome
Received on Tue Dec 02 2008 - 13:07:11 MST
This archive was generated by hypermail 2.2.0 : Tue Dec 02 2008 - 12:00:02 MST