Re: [squid-users] LDAP against eDirectory refresh required

From: B K <[email protected]>
Date: Thu, 19 Oct 2006 11:39:31 +1000

I've tried your debug suggestion and it appears to be a problem with my
filters perhaps, although I have since tried a few combinations. I've been
trying the filters using ldapsearch and they appear to be fine.

What do you think of the following ? What can you suggest?

2006/10/19 10:11:59| aclMatchExternal: acl="ldap-group"
2006/10/19 10:11:59| aclMatchExternal: ldap-group("user1 BannedUsers") =
lookup needed
2006/10/19 10:11:59| externalAclLookup: lookup in 'ldap-group' for 'user1
BannedUsers'
2006/10/19 10:11:59| external_acl_cache_add: Adding 'user1 BannedUsers' = -1
2006/10/19 10:11:59| externalAclHandleReply: reply="ERR"
2006/10/19 10:11:59| external_acl_cache_add: Adding 'user1 BannedUsers' = 0
2006/10/19 10:11:59| external_acl_cache_add: updating existing entry
2006/10/19 10:11:59| aclMatchExternal: acl="ldap-group"
2006/10/19 10:11:59| aclMatchExternal: ldap-group = 0
2006/10/19 10:13:48| aclMatchExternal: acl="ldap-group"
2006/10/19 10:13:48| aclMatchExternal: ldap-group("user4 BannedUsers") =
lookup needed
2006/10/19 10:13:48| externalAclLookup: lookup in 'ldap-group' for 'user4
BannedUsers'
2006/10/19 10:13:48| external_acl_cache_add: Adding 'user4 BannedUsers' = -1
2006/10/19 10:13:48| externalAclHandleReply: reply="ERR"
2006/10/19 10:13:48| external_acl_cache_add: Adding 'user4 BannedUsers' = 0
2006/10/19 10:13:48| external_acl_cache_add: updating existing entry
2006/10/19 10:13:48| aclMatchExternal: acl="ldap-group"
2006/10/19 10:13:48| aclMatchExternal: ldap-group = 0

*******************************************************************************

2006/10/19 11:18:07| aclMatchExternal: acl="ldap-group"
2006/10/19 11:18:07| aclMatchExternal: ldap-group("user1 BannedUsers") =
lookup needed
2006/10/19 11:18:07| externalAclLookup: lookup in 'ldap-group' for 'user1
BannedUsers'
2006/10/19 11:18:07| external_acl_cache_add: Adding 'user1 BannedUsers' = -1
Connected OK
group filter '(&(objectclass=User) (cn=user1)
(groupMembership=BannedUsers))', searchbase 'o=novell'
squid_ldap_group WARNING, LDAP search error 'Invalid DN syntax'
2006/10/19 11:18:07| externalAclHandleReply: reply="ERR"
2006/10/19 11:18:07| external_acl_cache_add: Adding 'user1 BannedUsers' = 0
2006/10/19 11:18:07| external_acl_cache_add: updating existing entry
2006/10/19 11:18:07| aclMatchExternal: acl="ldap-group"
2006/10/19 11:18:07| aclMatchExternal: ldap-group = 0

*******************************************************************************

_________________________________________________________________
House hunt online now!
http://a.ninemsn.com.au/b.aspx?URL=http%3A%2F%2Fninemsn%2Erealestate%2Ecom%2Eau%2Fcgi%2Dbin%2Frsearch%3Fa%3Dbhp%26t%3Dres%26cu%3DMSN&_t=758874163&_r=HM_EndText_Oct06&_m=EXT
Received on Wed Oct 18 2006 - 19:39:42 MDT

This archive was generated by hypermail pre-2.1.9 : Wed Nov 01 2006 - 12:00:04 MST