When using authenticated squid is not possible use internet on Windows.
Every time I received a pop-up requiring username e password.
At the logs file there’s a message error:
ERROR: Negotiate Authentication validating user. Error returned ‘BH received type 1 NTLM token’
Did you setup 127.0.0.1 as DNS server like in the following thread (similar error) ?
If not please tell us some more about your config by posting the output of:
config show dns
config show sssd
Which Windows version and browser(s) do you use?
Do your clients use NethServer as DNS server?
Did you enter the NethServer FQDN in the proxy settings of your browser? There may be problems with using the IP address.
I tried it with Edge and Chrome now and you have to deactivate “detect settings automatically” and set the proxy manually: (Sorry for my German Windows screenshot)
Well, Installed Firefox and Chrome (Windows 10). Firefox work (but I have problem with all links with annouce - youtube not play video). Chrome and Edge can’t work.
Opera and Firefox on Win XP works, but the same problem with the annouces.
Does browsing work normally? Because in case of authentification this is no bad error:
All requests which require authentication but do not provide it get a 407 or
401 response challenging the browser to provided some credentials. This is
true for all authentication types.
Sites that use https I have lag and trouble.
WinXP open https but I have trouble on some links.
Win10 the same sites can’t open (https).
Definetely I have problem with https.
Sorry, I could not reproduce the “ERR_TIMED_OUT”. The log files seems to be ok.
It tried it with Win 10 and XP now:
On WIn 10 Edge, Firefox and Chrome are working.
On Win XP only Firefox ESR works, the other browsers have problems with auth but I have to use old browser versions on XP because the newer ones are not supported anymore.
My settings:
Proxy (manually set, FQDN): proxy.domain.local
Turn off any proxy script autodetection function.
Hello
I have the same problem! I configured the proxy with squid and AD, authentication works on FIREFOX, however in IE and Chrome the message appears:
Unfortunately I do not know what is happening. I have refactored the server again and it still gives the same error. If transparent mode is selected all sites work correctly but if authenticated mode is selected the sites are again blocked. Tested on Windows 10 and Windows XP. This config was used with AD mode enabled.
please try to open different browsers and login more often. I had some problems immediately after activating auth proxy on a Win 7 machine but I opened another browser, logged in and it worked.
It seems like Opera, Chrome and MS Browsers (IE, edge) use the same proxy config of Windows internet options. Firefox can use an own proxy setting. Use FQDN in proxy settings and check that DNS is fast on your proxy. Clients should use NethServer as DHCP and DNS.
Use dig nethserver.org to check DNS response.
You may open a terminal and watch the log live with tail -f /var/log/cache.log. This is also possible in web UI with log viewer. You should see a working auth after some errors:
2018/04/01 03:16:12 kid1| ERROR: Negotiate Authentication validating user. Result: {result=BH, notes={message: received type 1 NTLM token; }}
2018/04/01 03:16:51| negotiate_kerberos_auth: INFO: User markus@AD.CMB.LOCAL authenticated