Re: [squid-users] squid_ldap_auth + openldap

From: <[email protected]>
Date: Mon, 05 Jan 2004 09:11:43 +0700

Hi Henrik,

I've found the cause of the problem, thanks to the log file. I tried to
login as "user1@tld.com" which makes squid looks for
"uid=user1@tld.com,ou=tld.com,o=vpop" which, offcourse, doesn't exist. If
I only use "user1" without the domain, I can login fine.

Henrik, do you know how I can use squid for multiple domain? I change my
squid.conf into (remove the ou):
 auth_param basic program /usr/lib/squid/squid_ldap_auth -b o=vpop -h
 localhost

Then I have to login as "user1,ou=tld.com". Is there a way so I can login
as "user1@tld.com"?

I think modifying the squid_ldap_auth will do it, but is there any move
convinient way?

TIA,
toblo

----- Original message -----
From: "Henrik Nordstrom" <hno@squid-cache.org>
To: squid@tobloml.mailcan.com
Date: Fri, 2 Jan 2004 11:35:21 +0100 (CET)
Subject: Re: [squid-users] squid_ldap_auth + openldap

On Fri, 2 Jan 2004 squid@tobloml.mailcan.com wrote:

> o=vpop
> ou=tld.com
> uid=user1
> uid=user2
>
> The squid.conf has the following lines:
> auth_param basic program /usr/lib/squid/squid_ldap_auth -b
> ou=tld.com,o=vpop -h localhost -D "cn=manager,o=vpop" -w password

Should work from what I can tell. The binddn/passwd (-D/-w) arguments are
not needed in this setup.

Can you bind to the user using ldapsearch?

  ldapsearch -x -D o=vpop,ou=tld.com,uid=user1 -W -b ou=tld.com,o=vpop

Regards
Henrik
Received on Sun Jan 04 2004 - 19:11:47 MST

This archive was generated by hypermail pre-2.1.9 : Sun Feb 01 2004 - 12:00:03 MST