Hi,
I am having a problem with Squid and NTLM authentication, on Fedora FC3 with the latest (release) squid and samba installed.
Everything seems to be setup correctly; whenever I verify the connection between the linux box and the windows domain with kinit, wbinfo, and all other sorts of utilities outside squid, everything is ok.
When I run the ntlm_auth binary (the samba one), I can correctly authenticate users and passwords.
The privileged pipe is accessible by squid; I even assigned a regular shell to the squid user and tried to execute the above commands under the squid account, and everything works.
BUT, when I tell squid to authenticate users using ntlm_auth, they are denied access. I see 30 ntlm and 5 basic daemons starting; in the cache.log I can see the NTLM authorization headers coming from the browsers.
I kept the acl as simple as possible, with the simple requirement that users must be 'proxy_auth REQUIRED'.
However, users are denied access.
I tried almost every suggestion found in mailing lists and online user groups, but while all tests run ok, squid does not authenticate users.
I am lost. What can I do?
Marcantonio
