4005 – inverse ntlm_auth group membership feature request

Bug 4005 - inverse ntlm_auth group membership feature request

Summary: inverse ntlm_auth group membership feature request

Status:	NEW

Alias:	None

Product:	Samba 4.1 and newer
Classification:	Unclassified
Component:	Tools (show other bugs)
Version:	unspecified
Hardware:	All All

Importance:	P3 enhancement (vote)
Target Milestone:	---
Assignee:	Kai Blin
QA Contact:	Samba QA Contact

URL:
Keywords:

Depends on:
Blocks:

Reported:	2006-08-07 06:44 UTC by Dean Plant
Modified:	2021-02-17 11:34 UTC (History)
CC List:	0 users

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Dean Plant 2006-08-07 06:44:41 UTC

We are using ntlm_auth with the --require-membership-of= option to restrict user access to the squid proxy.

Although this is a works great, because nearly all our users are given Internet access, there is extra overhead of adding every user to the "Allow Internet Group". It would make sense (to me anyway) to have the inverse of this option, so as default everyone is granted access except for a --not-member-of="Deny Internet Group". This allows simpler administration of the user access group, assuming you have less users being denied Internet access.

Thanks

Dean.

Comment 1 Karolin Seeger 2009-12-11 07:31:06 UTC

Updating component

Comment 2 Kai Blin 2010-07-06 05:50:25 UTC

I'll have a look at that one.