RES: [squid-users] Squid + ntlm authentication with not trusted domains

From: Andre Fernando Goldacker <squid@dont-contact.us>
Date: Wed, 30 Nov 2005 16:47:36 -0300

> Hi,
>
> My squid is running with ntlm authentication against MS AD 2k. Is
there a way to configure squid using ntlm to authenticate users that
aren't members of my current domain and neither members of a trusted
domain? I have a mixed MS AD/NT4 environment with some NT4 domains on a
WAN. Also, sometimes I have users that come with notebooks and I don't
want them to join my domain or change their workgroup, but they need to
go through the proxy. My goal is to get rid of MS Proxy 2.0 which I'm
currently using and does this job, and squid always asks for username
and password for that kind of users which have to inform my
domain\username and pass to go through, I want to know if squid can also
like MS Proxy "forget" the domain part and authenticate them as if they
were part of the domain.
> Any help will be very much appreciated,
>

> Put them in a reserved ip address range; and let these addresses use
the proxy without authentication.

> M.

Thanks for the tip Mark I think it can do the job for the notebooks, but
I can't leave the domains I mentioned without authentication because
each of them is a whole factory with an average of 300 users accessing
the internet for each one (there are 3 of them). Do you (or anyone else)
have anything else in mind that may help?

Thanks in advance,
Received on Wed Nov 30 2005 - 11:47:43 MST

This archive was generated by hypermail pre-2.1.9 : Thu Dec 01 2005 - 12:00:10 MST