Hi, I am authenticating users against an NTLM server with the following configuration:
Squid.conf looks like this: auth_param ntlm program /usr/local/libexec/squid/ntlm_auth --helper-protocol=squid-2.5-ntlmssp auth_param ntlm max_challenge_reuses 0 auth_param ntlm max_challenge_lifetime 2 minutes auth_param ntlm children 2 auth_param basic program /usr/local/libexec/squid/ntlm_auth --helper-protocol=squid-2.5-basic auth_param basic children 2 auth_param basic realm Cache NTLM Authentication auth_param basic credentialsttl 2 hours I join the domain: Net join -S server -w domain -U username%password After that has succeded I then run winbindd and nmbd. If I do a wbinfo -u or -g, I can see users and groups. The problem comes in when I try and auth via a browser, I get the following error in cache.log [2005/10/31 11:43:36, 0] utils/ntlm_auth.c:winbind_pw_check(427) Login for user [EMAIL PROTECTED] failed due to [Access denied] [2005/10/31 11:43:36, 0] utils/ntlm_auth.c:manage_squid_ntlmssp_request(600) NTLMSSP BH: NT_STATUS_ACCESS_DENIED One of those for each time you try and auth. Now I have seen this in the past, but it seemed to disappear after a while. The domain I am logging onto does have over 1000 users and over 2000 groups. Don't know if that could be a reason. But anyone know why I am seeing this? Thanks Ian
