Re: [squid-users] NTLM auth

From: Dexter Morgan <dextermorgan2222_at_gmail.com>
Date: Wed, 24 Feb 2010 11:54:10 -0500

On Wed, Feb 24, 2010 at 11:38 AM, Luis Daniel Lucio Quiroz
<luis.daniel.lucio_at_gmail.com> wrote:
> Le Mercredi 24 Février 2010 10:22:14, Dexter Morgan a écrit :
>> |------------ START CONFIG -----------|
>>
>> auth_param ntlm program /usr/bin/ntlm_auth
>> --helper-protocol=squid-2.5-ntlmssp auth_param ntlm children 5
>> #auth_param ntlm max_challenge_reuses 0
>> #auth_param ntlm max_challenge_lifetime 2 minutes
>>
>> auth_param basic program /usr/bin/ntlm_auth
>> --helper-protocol=squid-2.5-basic auth_param basic children 5
>> auth_param basic realm Squid proxy-caching web server
>> auth_param basic credentialsttl 5 hours
>>
>> acl NTLMUsers proxy_auth REQUIRED
>> http_access allow all NTLMUsers
>>
>> |----------- END CONFIG ----------------|
>>
>> Squid Version 3.0.STABLE19
>> Samba 3.4
>>
>> I rececently upgraded from Debian stable to Debian testing and it
>> seems it upgraded my squid version. The above config used to work in
>> this manner. If a computer was on our domain, ntlm would work. If not,
>> it would drop down to the second section and use basic authentication
>> and prompt them through their browser. What it's doing now is
>> prompting them twice. The second time is prompting for the basic
>> authentication and working. How can I get rid of it from prompting
>> them through their browser the first time? Is it prompting for ntlm
>> auth through their browser? I'm really confused why it changed its
>> behavior like this.
>
> try to resign your server into domain
We tried this and it did not work. Is this an issue with the ntlm_auth
program maybe? Perhaps the functionality of the program changed?
Received on Wed Feb 24 2010 - 16:54:21 MST

This archive was generated by hypermail 2.2.0 : Wed Feb 24 2010 - 12:00:07 MST