Question on ntlm_auth tool
Andrew Bartlett
abartlet at samba.org
Thu Sep 9 22:50:44 GMT 2004
On Fri, 2004-09-10 at 08:13, Yimin Chen wrote:
> Hi,
>
> I am looking at the man page of ntlm_auth tool, and didn't find an
> option to retrieve group information of the user. Does this mean only if
> we pass the group access list information for the API to match group
> information internally, that we can make use of the tool to do NTLM
> authentcation + group access list?
I am quite willing to add a new protocol that exports the group lists,
or potentially (in consultation with the squid team) add this additional
features to the existing squid-2.5-ntlmssp 'protocol'.
The information is all there, as you know, so it would not be a big
patch to pull out a string-converted list of SIDs.
(I would do this by passing them in the 'extra_data' of the winbindd
pipe protocol, separated from the username by a NULL, for example).
Andrew Bartlett
--
Andrew Bartlett abartlet at samba.org
Authentication Developer, Samba Team http://samba.org
Student Network Administrator, Hawker College abartlet at hawkerc.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba-technical/attachments/20040910/c4bda18c/attachment.bin
More information about the samba-technical
mailing list