Fedora Linux Support Community & Resources Center

Home Forums Posting Rules Linux Help Fedora Set-Up Guides Ask Fedora Fedora Project
Go Back   FedoraForum.org > Fedora 17/18 > Servers & Networking
Reload this Page Squid_LDAP_Groups and AD User Primary Group
FedoraForum Search
Forgot Password? Join Us!
Register All Albums FAQ Search Today's Posts Mark Forums Read

Servers & Networking Discuss any Fedora server problems and Networking issues such as dhcp, IP numbers, wlan, modems, etc.

Reply
 
Thread Tools Search this Thread Display Modes
  #1  
Old 28th February 2012, 01:53 PM
TheNom Online
Registered User
  
Join Date: Jun 2011
Posts: 45
windows_7chrome
Red face Squid_LDAP_Groups and AD User Primary Group
Hi Guys,

I setup an AD Auth'd squid Fedora 14 server a while back which worked fine with NTLM and Basic auth for the client and then used Winbind (Wbinfo_group.pl) for the Security group member checks.

So i had a Squid server that allowed AD users access to certain websites depending on which AD Security group they where a member of.

This was all fine until we changed the company over to Win7/Office2010 and tried to activate...

I now have a new Squid server on F14 but with Negotiate, NTLM and Basic with Squid_LDAP_group to check for Group membership. All works great with activating and general internet access.

All apart from a system AD account that we use for updating gets denied every time. I have found that it is because this user is ONLY part of the SquidFullAccess security group that gives that user full internet access. I have found that this is not really the issue because i added the account back into the Domain Users group and it still didn't work. The problem is that the Users Primary Security Group was NOT Domain users.

It seems that Squid_LDAP_Group ignores any AD object as a user if that object does not have Domain Users as the Primary Group.

Any help/direction/guidance is appreciated.

Thanks
Reply With Quote
Reply

Tags
group, ldap, primary, squid, user

« Previous Thread | Next Thread »
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
nobody user and nobody group in NIS manojg Servers & Networking 23 10th August 2011 02:36 PM
gdm, no room? no access to primary user desktop nobodie Using Fedora 1 22nd April 2007 04:49 PM
temporary primary group MikeDougherty Using Fedora 0 1st February 2006 09:55 PM
ssh ACL by user name or group name gamradtk Servers & Networking 4 18th August 2005 11:16 PM


Current GMT-time: 20:49 (Monday, 20-05-2013)

TopSubscribe to XML RSS for all Threads in all ForumsFedoraForumDotOrg Archive
logo

All trademarks, and forum posts in this site are property of their respective owner(s).
FedoraForum.org is privately owned and is not directly sponsored by the Fedora Project or Red Hat, Inc.
Privacy Policy | Term of Use | Posting Guidelines | Archive | Contact Us | Founding Members

Powered by vBulletin® Copyright ©2000 - 2012, vBulletin Solutions, Inc.

 FedoraForum is Powered by RedHat