got it joined in the domain. thnx roman. now this time, this is weird. winbind is fine, i can now check using ntlm_auth too. have this configuration of my samba: workgroup = IBCJAPAN security = ads netbios name = devian realm = ibccorp.co.jp encrypt passwords = yes password server = DCCIT idmap uid = 10000-20000 idmap gid = 10000-20000 winbind separator = \ winbind cache time = 10 winbind uid = 10000-20000 winbind gid = 10000-20000 winbind use default domain = yes win i try to wbinfo -u i get these results: user1 user2 user3 before, it used to have a domain before it. domain\user1 domain\user2 domain\user3 so far, there are no errors but when i tried to browse, i get prompted for a username, password and a domain but it doesnt get throught. i have this in my auth_param: auth_param ntlm program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp auth_param ntlm children 5 auth_param ntlm max_challenge_reuses 0 auth_param ntlm max_challenge_lifetime 20 minutes auth_param ntlm use_ntlm_negotiate on and this for my acls: external_acl_type nt_group %LOGIN /usr/lib/squid/wbinfo_group.pl acl DeniedUsers external nt_group "/etc/squid/acls/allowedntgroups" acl friends proxy_auth REQUIRED http_access allow DeniedUsers http_access allow all friends http_access deny all but still, it doesnt get me through.... any idea? is there any information i need to post to investigate this problem? thnx,ian
