[squid-users] Question regarding NTLM pass-thru and local server requiring NTLM authenication ...

From: Adam Pearse <[email protected]>
Date: Fri, 1 Oct 2004 09:44:21 -0600

Hi all, I recently upgraded my three year old build of squid to the
latest release for Fedora Core 2 (squid-2.5.STABLE5-4.fc2). I have the
ntlm pass-thru authenication working great via the combined efforts of
squid, smb, and winbind. My squid.conf has the standard
acl/http_access plus one extra one to force authenication for sites
outside the local network:

acl all src 0.0.0.0/0.0.0.0
acl AuthorizedUsers proxy_auth REQUIRED
http_access allow all AuthorizedUsers
http_access allow localhost
http_access deny all

All this works great BUT I have one small problem. There is a local
intranet server with uses NTLM authenication against the local Windows
domain. When users access this site, they are being prompted for
username/password. I understand why this is happening but what I would
like to know is if there is an acl/http_access I can write which would
treat this partcular server as an outside box therefore causing the
ntlm authenication to be passed to it regardless of the individuals
browser's configuration.

If this has been asked before, my apologies, I searched google.
Squid's FAQ and this mailing list's archives for any relevant
information and turned up nothing. I appreciate any help on this
matter. TIA
Received on Fri Oct 01 2004 - 09:44:51 MDT

This archive was generated by hypermail pre-2.1.9 : Mon Nov 01 2004 - 12:00:01 MST