Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    pf2ad breaks my domain controllers (lsass.exe)

    Scheduled Pinned Locked Moved Cache/Proxy
    2 Posts 1 Posters 522 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      JoeFromNowhere
      last edited by JoeFromNowhere

      Hello everyone !
      I try to use pf2ad with squid and squidguard.
      But everytime squid starts with Windind NTLM enabled, my domain controller (Windows 2019) stop working and restart. They tell me that lsass.exe stopped working and then reboot.
      It looks like winbind overflow my servers. Does anyone know how to prevent it ?

      I don't know if it's important, but I have this message in squid logs : "negotiate_kerberos_auth: ERROR: krb5_read_keytab: Key table file '/etc/krb5.keytab' not found".

      I use pfsense 2.6.0 and had the same problem with 2.5.2

      Second question : if I ever succeed in making it work, is there any way to allow anonymous users ? Would be : if you are authenticated, I log it and pass. If you are not, pass anyway.

      Thank you for your help

      J 1 Reply Last reply Reply Quote 0
      • J
        JoeFromNowhere @JoeFromNowhere
        last edited by

        @joefromnowhere said in pf2ad breaks my domain controllers (lsass.exe):

        I don't know if it's important, but I have this message in squid logs : "negotiate_kerberos_auth: ERROR: krb5_read_keytab: Key table file '/etc/krb5.keytab' not found".

        Could get rid of "Key table file '/etc/krb5.keytab' not found".
        But the problem remains.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.