Benedict White wrote:
When I use wbinfo_group.pl it clearly can and does go and check if a given users is in the specified Active Directory group, which is good.
The problem is that it returns "OK" to squid which squid does not seem to like.
Here is the relevent line in squid.conf:
external_acl_type nt_group ttl=5 protocol=2.5 concurrency=5 %LOGIN /usr/lib/squid/wbinfo_group.pl -d
and here is what the logile shows:
helperHandleRead: unexpected reply on channel -1 from nt_group #1 'OK'
Channel -1? That looks like the script isn't set up to handle
concurrency. Try "children=5" instead of "concurrency=5" in the
external_acl_type definition and see if that works better.
The question is this:
What is Squid expecting as a reply for both a good match and also for a no match?
If I can find that out I can change the script.
Kind Regards
Benedict White
Chris
