Anyone can answer at my question ?
Ok a large systems, i put :
auth_param ntlm children 50
auth_param ntlm max_challenge_lifetime 10 minutes
auth_param basic children 50
auth_param basci max_challenge_lifetime 10 minutes
for no put a big request on the PDC ?
thanks
Noc Phibee a écrit :
Hi
a small question :
Actually, i use Squid with a Active Directory Authentification for a
network with 20 000 users.
i use this configuration:
=============================================================
auth_param ntlm program /usr/bin/ntlm_auth
--helper-protocol=squid-2.5-ntlmssp
auth_param ntlm children 15
auth_param ntlm max_challenge_reuses 0
auth_param ntlm max_challenge_lifetime 2 minutes
auth_param basic program /usr/bin/ntlm_auth
--helper-protocol=squid-2.5-basic
auth_param basic children 15
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours
external_acl_type AD_Group concurrency=15 %LOGIN
/usr/lib/squid/wbinfo_group.pl
=============================================================
My Questions :
1- A a network with a Domain Controler are contacted by a VPN, what is
the best
number of children ?
2- For no charge the systems and network, he have a cache parametter ?
it's "auth_param ntlm max_challenge_lifetime 2 minutes" ?
if yes, 2 minutes are not too small ? a 15 minutes are not best for
users and
systems ?
Thanks for your help
