Re: [squid-users] squid_ldap_group user authorization

From: Jayesh Kamdar <[email protected]>
Date: Fri, 18 Mar 2005 15:26:28 -0500

Please tell me your syntax that you use in your conf. file.

Here is what I have ...

auth_param basic program /usr/lib/squid/squid_ldap_auth -h
ldapsrv1.mitre.org -b "o=mitre.org" -D "ou=people,o=mitre.org" -f
"(&(CN=%s)(memberOf=CN=osis_proxyauth_lg))"

So when I tried to use this proxy, the dialog box pops up. I type in
username and pasword but it fails with error in squid.log ...
1111177616.481 12 india.mitre.org TCP_DENIED/407 1742 POST
http://shttp.msg.yahoo.com/notify/ jkamdar NONE/- text/html

It doesn't even tries to access my ldapserver, so something is wrong on
my config.

Can you please help me out?

Thanks,
Jayesh

Ytzhak Levy wrote:

>Thanks !!!
>
>All works fine now.
>
>The only thing that i have to did is to put AD_domain\\lookup, in the login name param.
>
>
>Cheers
>
>
>
>
>
>>On Sat, 19 Mar 2005, Ytzhak Levy wrote:
>>
>>
>>
>>>#dn of group: CN=CGI - Rede,OU=Global,OU=Grupos,DC=mydomain,DC=com
>>>acl REDE_GRP external ldap_group CGI\ -\ Rede
>>>
>>>
>>This does not work.
>>
>>Currently the only way to define acl elements with spaces in them
>>is to use an acl file.
>>
>>acl REDE_GRP external ldap_group "/path/to/group.txt"
>>
>>where /path/to/group.txt contains
>>CGI - Rede
>>
>>Regards
>>Henrik
>>
>>
>
>
>
Received on Fri Mar 18 2005 - 13:31:05 MST

This archive was generated by hypermail pre-2.1.9 : Fri Apr 01 2005 - 12:00:02 MST