Hello List,
I am just using the NTLM Authentication of an AD-Domain with wb_group for
Squid.
All Users in the group WWW_Benutzer are allowed to surf, others not.
I have therefore successfully configured samba to use winbindd and winbind
bound to the Domain (via smb.conf).
At least it seems so: wbinfo -u gives me all Usernames of the Domain, wbinfo
-g the group names.
Squid-2.5 (self-compiled with <configure –-enable-auth=“ntlm,basic“
--enable-basic-auth-helpers=“winbind“ --enable-ntlm-auth-helpers=“winbind“>)
starts without errors, with a squid.conf where, following the readme.txt from
.../squid.../helpers/external_auth/winbind_group/ an acl and more is defined
for the WWW_Benutzer
O.K, but it doesn't work:
I always get the error:
-----------
Feb 7 19:35:15 netapp01 winbindd[762]: [2003/02/07 19:35:15, 0]
nsswitch/winbindd_pam.c:winbindd_pam_auth_crap(181)
Feb 7 19:35:15 netapp01 winbindd[762]: winbindd_pam_auth: could not fetch
trust account password for domain R-ERMER
------------
in my /var/log/messages, when an authorized User (of the group WWW_Benutzer)
wants to access the proxy, and he won't be allowed to log in.
Besides that, wbinfo -t tells me, " Secret is bad"
Does that have anything to do with the error above?
Thanks a lot!
-- Mit freundlichen Grüßen Markus Feilner May you always grok in fullness! Beachten Sie bitte unsere neue Email-Adresse! ------------------------------------------------------------------------------------------------- Feilner IT Linux & GIS Erlangerstr. 2 93059 Regensburg fon: +49 941 70 65 23 - mobil: +49 170 302 709 2 web: http://feilner-it.net mail: [email protected]Received on Fri Feb 07 2003 - 14:57:20 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:13:16 MST