Hi Henrik, At 01.51 08/02/2003, Henrik Nordstrom wrote:
Hmm, I think that the following from http://devel.squid-cache.org/external_acl/ is very unclear:Guido Serassio wrote: > > Hi, > > Il 10.04 07/02/2003 [EMAIL PROTECTED] ha scritto: > >Hello List, > > > >my problem ist to get user authenticated against a AD. > > > > > > external_acl_type NT_global_group %LOGIN > > /usr/lib/squid/wb_group > > acl ieuser external NT_global_group Datkom > > acl proxy_auth REQUIRED > > http access allow ieuser > > Wrong squid.conf settings: > > Try using; > > acl password proxy_auth REQUIRED > > http access allow password ieuserYou do not actually need to use a proxy_auth acl if your are using a external_acl_type with %LOGIN, they both do the same thing (trigger authentication).
"auth lookups
The use of %LOGIN requires that the user is already successfully authenticated. The external acl cannot yet cause a challenge to be sent to the browser. "
Regards
Guido
Regards Henrik
- ======================================================= Serassio Guido Via Albenga, 11/4 10134 - Torino - ITALY E-mail: [EMAIL PROTECTED] WWW: http://www.serassio.it
