[Samba] Problem with mod_ntlm_winbind

Plant, Dean dean.plant at roke.co.uk
Wed Jul 5 16:51:19 GMT 2006

I'm playing with the mod_ntlm_winbind from
http://download.samba.org/ftp/unpacked/lorikeet/mod_ntlm_winbind/ on
Centos 4.3 but running into problems when trying to authenticate via the
browser. IE says it cannot find the server when trying to access
http://server/auth Firefox pops up an authentication box but this also
does not work.

Can anyone point me into what I might be doing wrong or may have missed.

My test box is also running squid which is successfully using ntlm_auth
for transparent authentication.

The mod_ntlm_winbind module seemed to compile correctly and I added
apache to the squid group so it could access the
/var/cache/samba/winbindd_privileged directory as user apache and I have
added to httpd.conf the following

LoadModule ntlm_winbind_module modules/mod_ntlm_winbind.so 


<Directory "/var/www/html/auth">
  AuthName "NTLM Authentication test"
  NTLMAuth on
  NTLMAuthHelper "/usr/bin/ntlm_auth
  NTLMBasicAuthoritative on
  AuthType NTLM
  require valid-user

Winbind processes running when trying to connect

apache   16343 16335  0 16:50 ?        00:00:00 /usr/bin/ntlm_auth
apache   16344 16336  0 16:50 ?        00:00:00 /usr/bin/ntlm_auth

Error from /var/log/httpd/error_log

[2006/07/05 16:50:53, 1] libsmb/ntlmssp.c:ntlmssp_update(252)
  got NTLMSSP command 3, expected 1

Error from /var/log/samba/winbindd.log

[2006/07/05 16:50:02, 1]
  user 'apache' does not exist



More information about the samba mailing list