On 22/9/2011 2:35 πμ, Markus Moeller wrote:
> Did you follow the wiki
> http://wiki.squid-cache.org/ConfigExamples/Authenticate/Kerberos ? Did
> you use the -d option with squid_kerb_auth ?
>
Many thanks Markus,
I also discovered, after each authentication attempt from the browser,
in squid cache.log the following errors:
2011/09/21 21:55:23| squid_kerb_auth: DEBUG: Got 'YR
TlRMTVNTUAABAAAAB4IIogAAAAAAAAAAAAAAAAAAAAAFASgKAAAADw==' from squid
(length: 59).
2011/09/21 21:55:23| squid_kerb_auth: DEBUG: Decode
'TlRMTVNTUAABAAAAB4IIogAAAAAAAAAAAAAAAAAAAAAFASgKAAAADw==' (decoded
length: 40).
2011/09/21 21:55:23| squid_kerb_auth: WARNING: received type 1 NTLM token
Does it help to pinpoint the problem?
Yes, I followed the directions posted there. Unfortunately, I found that
these directions are missing many points and are focused on MS active
directory integration (note: the -d option is not shown there as well).
I also found on the Internet other useful directions like:
http://klaubert.wordpress.com/2008/01/09/squid-kerberos-authentication-and-ldap-authorization-in-active-directory/
http://www.grolmsnet.de/kerbtut/
http://download.oracle.com/docs/cd/B19306_01/network.102/b14268/asokerb.htm
http://www.howtoforge.com/debian-squeeze-squid-kerberos-ldap-authentication-active-directory-integration-and-cyfin-reporter
...which IMHO one has to combine creatively to make things work...
Thanks again,
Nick
This archive was generated by hypermail 2.2.0 : Fri Sep 23 2011 - 12:00:01 MDT