> > Hi everybody, > > I setup squid-2.5.STABLE9 with samba-3.0.13 to use > winbind authentication over a Windows 2003 Active > Directory. > Web users' authentication from my proxy server box > succeede. > But when a remote user try to authenticate himself, > authentication failes and Squid return the following: > authenticateNTLMHandleReply: Error validating user > via NTLM. Error returned 'BH NT_STATUS_ACCESS_DENIED' > > I configured samba with (--with-ads --with-ldap > --with-winbind --with-winbind-auth-challenge). > > And I configure squid with (--enable-auth="ntlm,basic" > --enable-basic-auth-helpers="winbind" > --enable-ntlm-auth-helpers="winbind"). > > My squid.conf file containes the following: > auth_param ntlm program > /usr/local/samba/bin/ntlm_auth > --helper-protocol=squid-2.5-ntlmssp > auth_param ntlm children 5 > auth_param ntlm max_challenge_reuses 0 > auth_param ntlm max_challenge_lifetime 2 minutes > > > auth_param basic program > /usr/local/samba/bin/ntlm_auth > --helper-protocol=squid-2.5-basic > auth_param basic children 5 > auth_param basic realm Squid proxy-caching web > server > auth_param basic credentialsttl 2 hours > > > acl authUsers proxy_auth REQUIRED > http_access allow authUsers > http_access deny all > > Does anyone have an idea? > Thanks in advance. > > Basically, that is a SAMBA error, and should be looked up in that context (Samba doc, web info, e.d.) M.
