Adam Aube wrote: > Oliver Hookins wrote: > >> Here's the real question - is it actually possible to have group >> AUTHORISATION without requiring the user to enter any login details >> (AUTHENTICATION), i.e. the username comes from Windows or something? > > How is Squid supposed to check for membership in a group if it has no > username to check the membership of?
There is support for NTLM (aka Windows Integrated Authentication), but it has some limitations: 1) It only fully works with IE 2) NTLM-over-HTTP is horribly broken - see the list archives for details Adam