afstcklnd wrote:
We have a working infrastructure using Windows 2003, AD & Sharepoint for
Project Web Access. In order to allow branch office access, we wanted to put
in place a reverse proxy solution and looked at Squid. After a lot of
reading, it became clear the Squid 2.6 or above was the best option in order
to get working NTLM authentication. So....
We've installed a Fedora Core 9 box with Squid 3.0, attached it to the
domain and set up all the kerberos, ldap authentication etc. However, it's
not quite behaving correctly.
Last I saw,
(http://www.squid-cache.org/mail-archive/squid-users/200803/0523.html)
you'll need to use 2.6 or 2.7 to proxy NTLM authentication. The
connection pinning required to support it has not been added to the
released Squid 3 code base.
Testing kerberos, ldap etc. seems all OK and the ntlm helpers are running
OK. Connect to the proxy with IE of Firefox and the request for a password
is presented but regardless of what is entered authentication.
Obviously I need to provide more information but can you guide me as to
where and what I need to provide?
Thanks
Chris