Problem with mod_auth_ntlm_winbind

Andrew Bartlett abartlet at
Tue Jul 31 23:29:29 GMT 2007

On Wed, 2007-07-04 at 18:42 +0200, nils.kloth at wrote:
> Hello,
> I don't get mod_auth_ntlm_winbind working.
> I've followed: <> winbindd is running, and ntlm_auth seems to work:
> ntlm_auth --username=kloth
> password:
> NT_STATUS_OK: Success (0x0)
> I am using the following apache config:
>     <Directory "/srv/www/htdocs/intranet">
> 	Options +FollowSymLinks -Indexes
> 	AllowOverride All
> 	Order 			deny,allow
>     	AuthName "HAUNI Intranet Login: Bitte mit dem Windows Benutzernamen und Kennwort anmelden"
> 	NTLMAuth on
> 	NegotiateAuth on
> 	NTLMBasicAuthoritative on
> 	NTLMAUTHHelper "/usr/bin/ntlm_auth -d10 --diagnostics --helper-protocol=squid-2.5-ntlmssp"
> 	NegotiateAuthHelper "/usr/bin/ntlm_auth -d10 --diagnostics --helper-protocol=gss-spnego"

Just looking over your message from the archives...

The --diagnostics option is for testing winbind and the target domain,
to determine what encryption types are supported.  It isn't useful from
inside apache or squid.

Andrew Bartlett

Andrew Bartlett                      
Authentication Developer, Samba Team 
Samba Developer, Red Hat Inc.        
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url :

More information about the samba-technical mailing list