[squid-users] squid_ldap_auth problem after W2003 upgrade

From: Mark Krawec <[email protected]>
Date: Wed, 13 Oct 2004 10:09:03 -0800

We've recently upgraded our domain controllers to 2003 and as a result the
squid_ldap_auth helper has stopped working. We're running 2.5Stable6 on
Redhat9. I've tried the Squid3 helper and get the same error. I can run
ldapsearch without problem, but squid_ldap_auth gives an "operations error".
I've also tried my queries in clear text and it works for ldapsearch but not
squid_ldap_auth. Does anyone have any ideas on how to resolve/diagnose this
problem. I've checked the archives but there doesn't seem to be a solution to
this. Below are examples of a successful ldapsearch and a squid_ldap_auth
query that used to work, but doesn't against W2003.

Thanks,

Mark

ldapsearch -D squid@scif.com -w password -b "DC=scif,DC=com" -H
ldaps://fddc02.scif.com:636/ -S /usr/local/ssl/certs -x
"(SamAccountName=Squid1)" cn
version: 2

#
# filter: (SamAccountName=Squid1)
# requesting: cn
#

# Squid1 Proxy, FD, Fairfield, scif, com
dn: CN=Squid1 Proxy,OU=FD,OU=Fairfield,DC=scif,DC=com
cn: Squid1 Proxy

echo "squid password" | /usr/local/squid/libexec/squid_ldap_auth -H
ldaps://fddc02.scif.com:636/ -D "squid" -w "password" -P -b "DC=scif,DC=com"
-f "(SamAccountName=Squid1)"
squid_ldap_auth: WARNING, LDAP search error 'Operations error'
ERR

_______________________________________________________________
Mark Krawec mark@krawecnet.com
"Earth First" (We'll strip mine the other planets later)
Received on Wed Oct 13 2004 - 11:09:05 MDT

This archive was generated by hypermail pre-2.1.9 : Mon Nov 01 2004 - 12:00:02 MST