NT Domain Aurhentification for routrer control
Kevin Colby
kevinc at grainsystems.com
Thu Dec 7 16:44:54 GMT 2000
Have you looked into Squid?
http://www.squid-cache.org/Doc/FAQ/FAQ.html
http://squid-docs.sourceforge.net/latest/html/book1.htm
Setup with properly, users will get the standard username/password
dialog and then be authenticated via an arbitrary command or one of
the stock methods. The included methods do not support such discrete
control, but since you are able to use even a shell script, there
are many options available. We use TNG's rpcclient to do a group
membership check against an NT PDC, for example. As an added bonus,
you can actually cache pages too.
- Kevin Colby
kevinc at grainsystems.com
Sewa Makhinya wrote:
>
> Hi.
>
> There's a small Windows NT 4 domain network with one PDC and none BDC.
> Network is connected to Internet via router based on Slackware 7 Linux
> 2.2.13.
>
> The task is to implement user-level authentification for Internet
> access. It means that, for example, user A, logged into domain in from
> any machine into network, must have full internet access, user B must
> have unlimited access only at worktime, and user C must have no
> internet acces, does no matter from what machine he logged in to
> domain.
>
> I think that one of possible ways to implement it is system of two
> scripts. First of them, logon script, will be executed at user's logon
> to domain, recieve user's name and IP of machine, look at database and
> open internet access if user can use it at this time. The second of
> them, logoff script, will be executed at logoff time and close access
> from machine. But the question in this case is - how to execute script
> at user's logon to domain?
>
> Or maybe there are some other variants to do it?
>
> --
> CY / Best Regards, Sewa Makhinya, System Administrator of Aricol-Ukraine
> www.mobile.odessa.ua|loki at paco.net|ICQ14035202|+380487770708/+380674838648
> /* How many times have I felt diseased? */
More information about the samba-ntdom
mailing list