Hi all, Here's a relevant portion of my squid configuration (squid/3.0STABLE18): --- SQUID CONFIGURATION START --- auth_param negotiate program /opt/squid-3.0/sbin/squid_kerb_auth -d -s HTTP/ proxy.mydomain.com auth_param negotiate children 50 auth_param negotiate keep_alive on external_acl_type SQUID_ALLUSERS ttl=3600 negative_ttl=3600 %LOGIN /opt/squid-3.0/sbin/squid_kerb_ldap -g users acl TEST_URLS url_regex -i "/opt/squid-3.0/etc/blocked.txt" acl ALL_DOMAIN_USERS external SQUID_ALLUSERS http_access allow ALL_DOMAIN_USERS TEST_URLS http_access deny TEST_URLS http_access allow all --- SQUID CONFIGURATION END --- When the user has authenticated with Active Directory (2008), the http_access rules work as expected but when an un-authenticated user uses the proxy, it denies access on the line "http_access allow ALL_DOMAIN_USERS TEST_URLS" and throws a message "Sorry, you are not currently allowed to request <URL> from this cache until you have authenticated yourself." How do I make un-authenticated users go through until the line "http_access allow all"?
