janm-samba@transactionware.com
2007-Mar-05 04:07 UTC
[Samba] NTLM authentication with squid using smbpasswd/tdbsam?
Hi, I want to set up squid (2.6.9) with Samba (3.0.24) using NTLM authentication. I don't want to authenticate against an AD server; I just want to authenticate against a smbpasswd backend without sending the password over the network in the clear. The squid server is on the same box a the Samba server providing file/print services to XP workstations. The primary way of using NTLM seems to be using ntlm_auth. ntlm_auth connects to winbindd which then connects to an AD server for authentication. This doesn't seem to be what I want. I could use something like pam_smbpass, but the password goes over the network in the clear which I'd like to avoid. Question: Is is possible to use ntlm_auth/winbind for authentication against an smbpasswd or tdbsam backend? Is there another way that I'm missing? In case it matters, this is on FreeBSD, 6.2 and 5.3. Guidance appreciated, even if it is "go over to the squid list"! Thanks, Jan Mikkelsen
Marco De Vitis
2007-Mar-05 10:52 UTC
[Samba] Re: NTLM authentication with squid using smbpasswd/tdbsam?
On 05/03/2007 5:00, janm-samba@transactionware.com wrote:> The primary way of using NTLM seems to be using ntlm_auth. > ntlm_auth connects to winbindd which then connects to an AD server > for authentication. This doesn't seem to be what I want.ntlm_auth through winbind can also authenticate against a Samba PDC, whatever backend it uses. This is the way to go in your case. -- Ciao, Marco.