This is an old revision of the document!
gX# id uX uid=20000(uX) gid=20005(Domain Users) groups=20005(Domain Users), 20011(samba) gX# cat smb.conf ... [user_write] path = /tmp valid users = ADX\uX, ADX\Administrator read only = no [group_write] path = /tmp valid users = @ADX\samba read only = no
[gX:~] # /usr/local/etc/rc.d/samba stop [gX:~] # ee /etc/rc.conf ... winbindd_enable="YES" nmbd_enable="YES" smbd_enable="YES" [gX:~] # /usr/local/etc/rc.d/samba start
@gX:~# /etc/init.d/samba stop
[gX:~] # pkg_add -r squid [gX:~] # chown root:squid /var/db/samba/winbindd_privileged/ [gX:~] # cat /etc/rc.conf ... squid_enable=yes [gX:~] # rehash [gX:~] # squid -z [gX:~] # cd /usr/local/etc/squid
root@gX:~# apt-get install squid root@gX:~# cd /etc/squid
gX# rcsdiff squid.conf 211c211 < # auth_param ntlm program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp --- > # for linux uncomment > # auth_param ntlm program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp > # for freebsd uncomment > # auth_param ntlm program /usr/local/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp 644a645,647 > acl inetuser proxy_auth REQUIRED > http_access allow inetuser
[gX:~] # /usr/local/etc/rc.d/squid start
root@gX:~# /etc/init.d/squid restart
gX# ntlm_auth --username=uX --require-membership-of=ADX\\inet