Thank you very much. Sorry but ... also he authenticated with Kerberos ?? or
only Ldap ?? Because the important thing for me is Kerberos.
APOLOGY ignorance about it.
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/SSO-ldap-kerberos-tp4679470p4679542.html
S
an in the keytab
WRFILE:PROXY.keytab
Tommy E CRADDOCK JR
-Original Message-
From: squid-users [mailto:squid-users-boun...@lists.squid-cache.org] On Behalf
Of erdosain9
Sent: Thursday, September 15, 2016 2:56 PM
To: squid-users@lists.squid-cache.org
Subject: Re: [squid-users] SSO
This is no error???
try_machine_keytab_princ: Trying to authenticate for squid-k$ from local
keytab...
-- try_machine_keytab_princ: Error: krb5_get_init_creds_keytab failed
(Preauthentication failed)
-- try_machine_keytab_princ: Authentication with keytab failed
-- try_machine_keytab_princ:
: squid-users@lists.squid-cache.org
Subject: Re: [squid-users] SSO (ldap kerberos)
Hi again.
I get this
msktutil --auto-update --verbose --computer-name squid-k -k PROXY.keytab
-- init_password: Wiping the computer password structure
-- generate_new_password: Generating a new, random password for
Hi again.
I get this
msktutil --auto-update --verbose --computer-name squid-k -k PROXY.keytab
-- init_password: Wiping the computer password structure
-- generate_new_password: Generating a new, random password for the
computer account
-- generate_new_password: Characters read from /dev/uda
On 14/09/2016 3:34 a.m., erdosain9 wrote:
> Hi.
> Thanks.
> With "take" a mean... to control which group a user belongs. So I can apply
> acl, etc to that groups.
>
> Like this in ldap
>
> # Active Directory
> auth_param basic program /usr/lib64/squid/basic_ldap_auth -R -b
> "cn=Users,dc=example,
Hi.
Thanks.
With "take" a mean... to control which group a user belongs. So I can apply
acl, etc to that groups.
Like this in ldap
# Active Directory
auth_param basic program /usr/lib64/squid/basic_ldap_auth -R -b
"cn=Users,dc=example,dc=lan" -D sq...@example.lan -w 123456 -f
sAMAccountName=%s -
On 13/09/2016 5:40 a.m., erdosain9 wrote:
> HI.
> I want Single Sing on...
"Single Sign-On" is the emergent behaviour of multiple pieces of
software all sharing a single password manager - either to locate user
credentials or to perform the authentication on the software behalf.
The type(s) of au
HI.
I want Single Sing on... i want can take groups to assing acl and control
bandwith, etc.
I need ldap??? i know i need kerberos to sso... but is necessary ldap for
take groups??? or with kerberos i can "take" groups??
by the way,
i probe this
basic_ldap_auth -R -b "cn=Users,dc=example,dc=la
