I always get the error: ----------- Feb 7 19:35:15 netapp01 winbindd[762]: [2003/02/07 19:35:15, 0] nsswitch/winbindd_pam.c:winbindd_pam_auth_crap(181) Feb 7 19:35:15 netapp01 winbindd[762]: winbindd_pam_auth: could not fetch trust account password for domain R-ERMER ------------ in my /var/log/messages, when an authorized User (of the group WWW_Benutzer) wants to access the proxy, and he won't be allowed to log in.
Besides that, wbinfo -t tells me, " Secret is bad" Does that have anything to do with the error above?
Hm, I had some trouble with winbind, too. There must be something be changed in the /etc/nsswitch.conf as well as in the /etc/pam.d/samba. My /etc/pam.d/samba look like this: auth requisite pam_nologin.so auth required pam_unix.so account required pam_unix.so password requisite pam_cracklib.so retry=3 password requisite pam_unix.so shadow md5 use_authtok try_first_pass password required pam_smbpass.so nullok use_authtok try_first_pass session required pam_unix.so My /etc/nsswitch.conf looks like this: <snip> passwd: files winbind group: files winbind <snip> The new /etc/pam.d/samba improves security of samba and allows change of passwd over smb. I think there must be something changed within the config for squid as well. The changes in nsswitch.conf are needed for winbind (you find something about this in the samba-documentation). Look for winbind in the /usr/share/doc/packages/samba. I think some settings had to be changed for winbind as well. And next I use a newer version of sasmba, than the one equipped with SuSE (I use v 2.2.6 with LDAP-Support). Philippe