RE: [squid-users] Re: Question about ldapsearch argument!

From: Mohammad Meskarian <[email protected]>
Date: Tue, 13 Jan 2004 22:23:07 -0000

Hamed
  can you please let me know what is your ldap client and ldap server???

  Probably I can give some help on Squid mailing list for ldap server
:-)
 
 BR
 Mohammad

-----Original Message-----
From: Henrik Nordstrom [mailto:hno@squid-cache.org]
Sent: 13 January 2004 22:12
To: Hamed Majnoonian
Cc: Henrik Nordstrom; squid-users@squid-cache.org
Subject: [squid-users] Re: Question about ldapsearch argument!

On Tue, 13 Jan 2004, Hamed Majnoonian wrote:

> 1- The name of my domain is "juno.hov.butanegroup.com" - juno is the
> name of my active directory and the rest is the domain name.

Ok.

> 2- Here is my Ldapsearch argument: /Ldapsearch -h 192.168.2.2 -xv -b
> dc=juno,dc=hov,dc=butanegroup,dc=com "uid=administrator"

Was anything returned?

Most AD servers do not allow anonymous searches of the directory, and
you
may need to specify a bind DN and password to bind as while performing
the
search.

Also AD does not make use of the uid attribute last time I looked, so
unless you have defined this attribute in your directory the search
filter
is unlikely to return anything.

As searches is not allowed you have to "guess" what the DN to bind as is

or use a "Windows" LDAP tool to browse the directory while logged on to
the domain.

But the DN for administrator should be

   CN=Administrator,CN=Users,DC=juno,dc=hoc,dc=butanegroup,dc=com

Assuming your AD name is juno.hoc.butanegroup.com (should show up as
@juno.hoc.butanegroup.com in the login screen and in the user manager).

Regards
Henrik
Received on Tue Jan 13 2004 - 15:24:40 MST

This archive was generated by hypermail pre-2.1.9 : Sun Feb 01 2004 - 12:00:06 MST