Re: [squid-users] Syntax Correct group_ldap_auth ?

From: Michael Fuller / Hotmail <[email protected]>
Date: Fri, 8 Nov 2002 16:04:23 +0530

No luck. ldapsearch returns nothing. I am able to get results only when the
base dn gets appanded in the users cn. the output is pasted below

---------------squid_ldap_group------------------------
[root@rhmail root]# /usr/local/squid/libexec/squid_ldap_group -b "O=Southern
Railway" -f "(&(member=cn=%v)(objectClass=groupofNames))" -d 255
dycsteofc browsers
Binding OK
filter (&(member=cn=dycsteofc)(objectClass=groupofNames))
Binding OK
filter (&(member=cn=dycsteofc)(objectClass=groupofNames))
ERR

---------------------ldapsearch with the same filter as squid_ldap_group
(fails) --------------------

[root@rhmail root]# ldapsearch -x -b "O=Southern Railway"
"(&(member=cn=dycsteofc)(objectclass=groupofNames))"
version: 2
#
# filter: (&(member=cn=dycsteofc)(objectclass=groupofNames))
# requesting: ALL
#
# search result
search: 2
result: 0 Success
# numResponses: 1

---------------------ldapsearch with the same filter as squid_ldap_group
with base dn appended (sucess)--------------------

*****see here****
[root@rhmail root]# ldapsearch -x -b "O=Southern Railway"
"(&(member=cn=dycsteofc,O=Southern Railway)(objectclass=groupofNames))"
version: 2
#
# filter: (&(member=cn=dycsteofc,O=Southern
Railway)(objectclass=groupofNames))
# requesting: ALL
#
# browsers, Southern Railway
dn: cn=browsers,o=Southern Railway
cn: browsers
objectClass: groupofNames
objectClass: top
member: cn=dycsteofc, o=Southern Railway
# search result
search: 2
result: 0 Success
# numResponses: 2
# numEntries: 1
[root@rhmail root]#

This tell you somethig ?

Regards,
Michael Fuller

----- Original Message -----
From: "Henrik Nordstrom" <hno@marasystems.com>
To: "Michael Fuller / Hotmail" <fullerms@hotmail.com>
Cc: <squid-users@squid-cache.org>
Sent: Friday, November 08, 2002 3:22 PM
Subject: Re: [squid-users] Syntax Correct group_ldap_auth ?

> Should work.. but you probably should specify a server..
>
> What does ldapsearch return if you use the exact same search filter as
> reported by squid_ldap_group debugging?
>
> Regards
> Henrik
>
>
> fre 2002-11-08 klockan 10.19 skrev Michael Fuller / Hotmail:
> > Hello Henrik,
> >
> > I followed the syntax given in this message, but no luck. The command
line
> > output from ldapsearch and squid_ldap_group are pasted below for
reference.
> > Can you please tell me where I am going wrong ?
> >
> >
> > ----------------------------ldapsearch-----------------------
> >
> > [root@rhmail root]# ldapsearch -x -b "O=Southern Railway"
> > "(&(member=cn=dycsteofc,O=Southern Railway)(objectclass=groupofNames))"
cn
> > version: 2
> > #
> > # filter: (&(member=cn=dycsteofc,O=Southern
> > Railway)(objectclass=groupofNames))
> > # requesting: cn
> > #
> > # browsers, Southern Railway
> > dn: cn=browsers,o=Southern Railway
> > cn: browsers
> > # search result
> > search: 2
> > result: 0 Success
> > # numResponses: 2
> > # numEntries: 1
> >
>
> -----------------------------------squid_ldap_group-----------------------

--
> > ---
> >
> > [root@rhmail root]# /usr/local/squid/libexec/squid_ldap_group -b
"O=Southern
> > Railway" -f "(&(member=cn=%v,*)(objectclass=groupofNames))" -d 255
> > dycsteofc browsers
> > Binding OK
> > filter (&(member=cn=dycsteofc,*)(objectclass=groupofNames))
> > Binding OK
> > filter (&(member=cn=dycsteofc,*)(objectclass=groupofNames))
> > ERR
>
Received on Fri Nov 08 2002 - 03:34:29 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:11:14 MST