i am planing to setup kerberos auth in squid. At the moment we are using ntlm auth but want also to provide Kerberos/negotiate auth.
A few questions: 1) Do we need a keytab file? 2) We have multiple squid-servers, do I need an individual keytab-file for each server or would it be enough to have one keytab file and then copy this to the servers. In each of our subsidiary there is working one single squid. so the users would see and use only this squid proxy. 3) I have to setup the principal as HTTP/squid.local (squid is here only a name, not a hostname or such), right or do I need the host HTTP/squid.host.local 4) Can I use the same keytab for apache and squid-auth? thanxs mfg Markus Rietzler <rietzler_software/> Rechenzentrum der Finanzverwaltung Tel: 0211/4572-2130 mfg Markus Rietzler <rietzler_software/> Rechenzentrum der Finanzverwaltung Tel: 0211/4572-2130
