On Thu, 2003-12-18 at 19:18, [EMAIL PROTECTED] wrote: > Hi! > > I have a problem with the ntlm_auth helper (samba-3.0.2) under squid. I > got the following from the cache.log:
> Login for user [EMAIL PROTECTED] failed due to [winbind client > not aut > horized to use winbindd_pam_auth_crap. Ensure permissions on > /var/cache/samba/w > inbindd_privileged are set correctly.] > [2003/12/18 15:36:48, 0] > utils/ntlm_auth.c:manage_squid_ntlmssp_request(375) > NTLMSSP BH: NT_STATUS_ACCESS_DENIED > > squid.conf settings are: > > auth_param ntlm program /usr/bin/ntlm_auth > --helper-protocol=squid-2.5-ntlmssp -d 10 > auth_param ntlm children 5 > auth_param ntlm max_challenge_reuses 0 > auth_param ntlm max_challenge_lifetime 2 minutes Just checking - squid is running as user and group squid? > I don't understand why it would complain about the winbindd_privileged > directory when I've changed the permissions to it as follows: > > drwxr-x--- 2 root squid 72 Dec 18 14:54 > winbindd_privileged/ This looks correct. > I'm not sure what the line "not authorized to use winbindd_pam_auth_crap" > means. I've searched with Google.com but still no solution. I guess this > is the place to go. It means something isn't right with those permissions. Andrew Bartlett -- Andrew Bartlett [EMAIL PROTECTED] Manager, Authentication Subsystems, Samba Team [EMAIL PROTECTED] Student Network Administrator, Hawker College [EMAIL PROTECTED] http://samba.org http://build.samba.org http://hawkerc.net
signature.asc
Description: This is a digitally signed message part
-- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba