On 19/04/11 20:09, Go Wow wrote:
Hi, I use NTLM to authenticate my AD users with Squid 3.11. My cache logs
You mean 3.1.1? we are only up to 3.2 series so far.
have these entries at random times. I know that the client is sending a kerberos reply instead of NTLM auth. I want to know whether something can be done about this or not. libsmb/ntlmssp.c:335(ntlmssp_update) got NTLMSSP command 3, expected 1 I tried moving to Kerberos but it didnt work for me. My client envirno is IE 8, Chrome and Firefox 3.6 or 4
For the record which User-Agent is broken and sending Kerberos when offered NTLM? and are you offering Negotiate?
The new negotiate_wrapper helper from Markus Moeller may help. We have tested it of use in "auth_param negotiate", but I'm not sure of the effect if its used in "auth_param ntlm".
Amos -- Please be using Current Stable Squid 2.7.STABLE9 or 3.1.12 Beta testers wanted for 3.2.0.7
