> -----Original Message-----
> From: news [mailto:news@sea.gmane.org]On Behalf Of Adam Aube
> Sent: Thursday, November 03, 2005 10:50 AM
> To: squid-users@squid-cache.org
> Subject: [squid-users] RE: Re: Using LDAP Authentication with Windows
> 2003 Domain
>
>
> Derrick MacPherson wrote:
>
> > Is there an advantage to using LDAP and not using ntlm_auth?
>
> LDAP is simpler to setup and uses less system and network
> resources, as well
> as working readily with all browsers (on all platforms) that support
> authentication.
>
> NTLM authentication requires a full Samba install joined to
> the domain, is
> more resource intensive, breaks the HTTP protocol, and only provides a
> significant benefit with Internet Explorer on Windows (because
> authentication is transparent).
>
> Yes, some versions of Mozilla do work with NTLM, but the user
> still needs to
> enter their username and password - NTLM is then used for the exchange
> between the browser and the proxy.
Not entirely true. There is a configuration option (network.automatic-ntlm-auth.trusted-uris) which allows specifying domains to automatically supply NTLM auth information.
>
> Adam
>
Sorry for the off topic post.
Chris
Received on Thu Nov 03 2005 - 13:02:33 MST
This archive was generated by hypermail pre-2.1.9 : Thu Dec 01 2005 - 12:00:09 MST