[Date Prev][Date Next] [Chronological] [Thread] [Top]

LDAP + squid

To: openldap-technical@openldap.org
Subject: LDAP + squid
From: Bruno Steven <aspenbr@gmail.com>
Date: Thu, 26 Nov 2009 15:08:32 -0200
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:date:message-id:subject :from:to:content-type; bh=4Cy/7oFrzX/+vjuHCaTKxcfZRnTImqokkTxqZZdoeQg=; b=Ic1bQxZxSweYR7PTxqOj5HIuWZlPBbZmiVl6UUy1s3OhGobvm7SKbsMtFNFtH8zUmE H/i+W1RiKiXtSoeproV+IEDgQWv7tcYT5bY0zLdVecuMiaY67aC/WXWxyw2oGZ/RHvvk 2RcQBjlR/oyyrwyLxJj4oLe6NEO1VgTIvdGUk=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type; b=jspav2eOgWc0qCQkNOCxrWNuifpKAbDJLE1H5yZC4rsBX3UBW0iiyw11NE8HSW4LKg 8SjVUEyvbf8AXaM+WclvDjXLzG0T38AamQDZnso1FsOwFBGVCi7U0Etjwr6nfAmSe+F1 3tRMuCCS24/lYEc3mI7RL/G8phAFAtsTG9TTc=

Hello ...

My squid work fine with Openldap, but I need change method authentication of user for groups , so I made the configuration follow .

# As linhas abaixo se referem a autenticaÃ§ de usuÃ¡os no AD

auth_param basic program /usr/local/squid/libexec/squid_ldap_auth -R -b "dc=amblivre,dc=com" -D "cn=proxy_user,ou=Internet,dc=amblivre,dc=com" -w "password" -f sAMAccountName=%s -h 192.168.4.55

auth_param basic realm Input your password

auth_param basic children 5

auth_param basic credentialsttl 15 minutes

#acl senha proxy_auth REQUIRED

#http_access allow senha

# ACL externa para autenticaÃ§ nas bases LDAP do PDC

external_acl_type ldap_group %LOGIN /usr/local/squid/libexec/squid_ldap_group -R -b "dc=amblivre,dc=com" -D "cn=proxy_user,ou=Internet,dc=amblivre,dc=co

m" -w "password" -f "(&(objectclass=person)(sAMAccountName=%v)(memberof=cn=%a,ou=Internet,dc=amblivre,dc=com))" -h 192.168.4.55

acl AcessoLivre external ldap_group AcessoLivre

http_access AcessoLivre

When the I input user and passord for auth the Squid doesn´t recognize the credentials . There are some problem in my configuration ?

Thanks.
--
Bruno Steven - Administrador de sistemas.
LPIC-1 - LPI ID: lpi000119659 / Code: p2e4wz47e4
https://www.lpi.org/caf/Xamman/certification

MCP-Windows 2003 - TranscriptID: 793804 / Access Code: 080089100
https://mcp.microsoft.com/authenticate/validatemcp.aspx

P Antes de imprimir pense em sua responsabilidade e comprometimento com o Meio Ambiente. Before printing this message, think about your ecologic responsability and environment commitment.

Follow-Ups:
- Re: LDAP + squid
  - From: Buchan Milne <bgmilne@staff.telkomsa.net>

Prev by Date: Syncrepl : Authentication issue
Next by Date: Re: LDAP + squid
Index(es):
- Chronological
- Thread