On Thu, 2 Jun 2005, marcantonio wrote:
> 2005/06/02 16:08:34| clientSetKeepaliveFlag: method = GET
> [2005/06/02 16:08:34, 1] utils/ntlm_auth.c:check_plaintext_auth(286)
> Reading winbind reply failed! (0x01)
> 2005/06/02 16:08:34| The request GET
> http://officescan-p.activeupdate.trendmicro.com:80/activeupdate/server.ini is
> DENIED, because it matched 'Authenticated'
> 2005/06/02 16:08:34| Access Denied:
> http://officescan-p.activeupdate.trendmicro.com:80/activeupdate/server.ini
> 2005/06/02 16:08:34| AclMatchedName = Authenticated
> 2005/06/02 16:08:34| Proxy Auth Message = <null>
> <<<
>
> First of all, I find strange that the request is "DENIED because it matched
> Authenticated".
> Authenticated users, as per the squid.conf file, should be allowed, not
> denied.
Is is denied because the authantication was not complete or verified.
> But the strangest thing is the "Reading winbind reply failed". Wbinfo works:
This is a Samba error..
> In short, it looks like domain authentications is setup correctly, ntlm_auth
> works, everything works, BUT squid. I'm sure I am doing something wrong, but
> after much research and investigation, I am rather stuck.
What tests did you do to verify ntlm_auth operation?
Try using it in the exact same manner you have specified in squid.conf as
your cache_effective_user.
Regards
Henrik
Received on Wed Jun 15 2005 - 16:19:34 MDT
This archive was generated by hypermail pre-2.1.9 : Fri Jul 01 2005 - 12:00:02 MDT