From owner-freebsd-questions@FreeBSD.ORG Mon Nov 7 15:09:08 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id EEA5916A41F for ; Mon, 7 Nov 2005 15:09:07 +0000 (GMT) (envelope-from bconklin@masongeneral.com) Received: from fw.masongeneral.com (list.masongeneral.com [66.119.204.11]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7336E43D46 for ; Mon, 7 Nov 2005 15:09:07 +0000 (GMT) (envelope-from bconklin@masongeneral.com) Received: from localhost (unknown [127.0.0.1]) by fw.masongeneral.com (Postfix) with ESMTP id 08DBF15444; Mon, 7 Nov 2005 07:09:04 -0800 (PST) Received: from fw.masongeneral.com ([127.0.0.1]) by localhost (fw.masongeneral.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 48442-05; Mon, 7 Nov 2005 07:09:02 -0800 (PST) Received: by fw.masongeneral.com (Postfix, from userid 1002) id 4365D1544A; Mon, 7 Nov 2005 07:09:01 -0800 (PST) Received: from mx1.masongeneral.com (mx1.masongeneral.com [172.31.195.56]) by fw.masongeneral.com (Postfix) with ESMTP id 7826115036; Mon, 7 Nov 2005 07:09:00 -0800 (PST) X-MimeOLE: Produced By Microsoft Exchange V6.0.6603.0 content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Date: Mon, 7 Nov 2005 07:09:00 -0800 Message-ID: X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: [squid-users] Squid and Active Directory Thread-Index: AcXhyUjkKk6tNeVeSPWC0aWgC520mwB44q3A From: "Brian E. Conklin" To: "Abbas Salehi" , X-Privacy-Notice: Please visit http://www.masongeneral.com/HIPAA.htm X-Virus-Scanned: amavisd-new at masongeneral.com Cc: Subject: RE: [squid-users] Squid and Active Directory X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 07 Nov 2005 15:09:08 -0000 You must make sure you set the proper permissions on the winbind pipe. In my distro: root# chown root:squid /var/cache/samba/winbindd_privileged root# chmod 750 /var/cache/samba/winbindd_privileged Brian E. Conklin, MCP+I, MCSE Director of Information Services Mason General Hospital http://www.masongeneral.com > -----Original Message----- > From: Abbas Salehi [mailto:abbas@isiran.ir]=20 > Sent: Friday, November 04, 2005 9:25 PM > To: squid-users@squid-cache.org > Subject: [squid-users] Squid and Active Directory >=20 >=20 > Dear sir >=20 > I did all of your recommanded from document step by step >=20 > I succeeded to joined to the domain and active directory , i=20 > can see the > domain users and > groups >=20 > kinit command works properly, >=20 > net ads testjoin > Join is OK >=20 > net ads join administrator > Joined 'squid-server' to realm 'TEST.COM' >=20 > But ntlm_auth does not work properly, >=20 > I have following error when i run it : >=20 > ntlm_auth --username=3Dadministrator > password: ****** > NT_STATUS_CANT_ACCESS_DOMAIN_INFO: NT_STATUS_CANT_ACCESS_DOMAIN_INFO > (0xc00000da) >=20 > when i run the squid and set the the machine as proxy,the=20 > squid authenticate > but does not accept the user >=20 > When i browes some web pages, bring the dialog box, contain user and > password and domian, > but does not accept, >=20 > We have following error in my logs >=20 > Winbind : >=20 > [2005/10/30 14:02:11, 0] nsswitch/winbindd_util.c:get_trust_pw(1033) > get_trust_pw: could not fetch trust account password for my domain > TEST.COM >=20 > Can anybody help me, >=20 > How can i solve this problem, >=20 > Regards > Abbas Salehi >=20 >=20 ====================================================================== Mason General Hospital 901 Mt. View Drive PO Box 1668 Shelton, WA 98584 http://www.masongeneral.com (360) 426-1611 ====================================================================== This message is intended for the sole use of the individual and entity to whom it is addressed and may contain information that is privileged, confidential and exempt from disclosure under applicable law. If you are not the addressee nor authorized to receive for the addressee, you are hereby notified that you may not use, copy, disclose or distribute to anyone this message or any information contained in the message. If you have received this message in error, please immediately notify the sender and delete the message. Replying to this message constitutes consent to electronic monitoring of this message. Thank you.