| View previous topic :: View next topic |
| Author |
Message |
coutts99
Apprentice
Joined: 19 Sep 2002
Posts: 171
Location: Sunderland, UK
|
 Posted: Wed Jul 21, 2004 2:28 pm Post subject: Squid NTLM Auth and wbinfo |
 |
|
I am trying to get NTLM auth working through Squid.
I have set up Samba to connect to Active Directory domain, and this works. I joined the domain with this server.
Now, ntlm_auth seems to work -:
ntlm_auth --username=********
password:
NT_STATUS_OK: Success (0x0)
But, wbinfo -a fails on the plaintext password authentication.
wbinfo -a ********%********
plaintext password authentication failed
error code was NT_STATUS_NO_SUCH_USER (0xc0000064)
error messsage was: No such user
Could not authenticate user ********%******** with plaintext password
challenge/response password authentication succeeded
Trying to use the proxy comes up with Access Denied.
Anyone got any bright ideas what could be wrong? |
|
| Back to top |
|
 |
coutts99
Apprentice
Joined: 19 Sep 2002
Posts: 171
Location: Sunderland, UK
|
| Posted: Wed Jul 21, 2004 2:53 pm Post subject: |
|
|
Ok fixed that error.
Put these bits in my squid.conf -:
auth_param ntlm program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp
auth_param ntlm children 30
auth_param ntlm max_challenge_reuses 0
auth_param ntlm max_challenge_lifetime 2 minutes
auth_param basic program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-basic
auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours
But when logged into the domain, I still get asked to log into the proxy and it does not accept my username and password anyway. |
|
| Back to top |
|
|
coutts99
Apprentice
Joined: 19 Sep 2002
Posts: 171
Location: Sunderland, UK
|
| Posted: Wed Jul 21, 2004 2:56 pm Post subject: |
|
|
Oh and running the follwing I get these results-:
/usr/bin/ntlm_auth --helper-protocol=squid-2.5-basic
******** ********
OK
/usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp
******** ********
[2004/07/21 15:55:44, 1] utils/ntlm_auth.c:manage_squid_ntlmssp_request(583)
BH |
|
| Back to top |
|
|
coutts99
Apprentice
Joined: 19 Sep 2002
Posts: 171
Location: Sunderland, UK
|
| Posted: Thu Jul 22, 2004 9:57 am Post subject: |
|
|
| No-one got any ideas why auth via ie seems to fail? |
|
| Back to top |
|
|
coutts99
Apprentice
Joined: 19 Sep 2002
Posts: 171
Location: Sunderland, UK
|
| Posted: Thu Jul 22, 2004 4:51 pm Post subject: |
|
|
| Finally got this working by changing /etc/pam.d/squid and /etc/pam.d/samba |
|
| Back to top |
|
|
Guybrush
Tux's lil' helper
Joined: 06 Feb 2003
Posts: 99
Location: 48°27'N, 11°8'O
|
| Posted: Thu Aug 05, 2004 12:45 pm Post subject: |
|
|
Hi coutts99,
could you please post the changes you made to /etc/pam.d/squid and /etc/pam.d/samba?
BTW, what USE-settings do you have?
Thanks in advance. |
|
| Back to top |
|
|
coutts99
Apprentice
Joined: 19 Sep 2002
Posts: 171
Location: Sunderland, UK
|
| Posted: Fri Oct 01, 2004 8:37 am Post subject: |
|
|
| Sorry I never replied, I'll have a look when I get back to work on Monday. |
|
| Back to top |
|
|
Guybrush
Tux's lil' helper
Joined: 06 Feb 2003
Posts: 99
Location: 48°27'N, 11°8'O
|
| Posted: Sat Oct 02, 2004 10:02 am Post subject: |
|
|
Never mind. Already managed to get it work. I'll post some usefull docu when I'm back on work on Monday.
So everybody else trying to get this work will have it easier  |
|
| Back to top |
|
|
|
Networking & Security
