[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: openldap & squid integration



my configuration was ok. i solved the problem. it was permission issue. 

On Jul 26, 2010, at 4:31 PM, Brett @Google wrote:

On Mon, Jul 26, 2010 at 8:16 PM, Brett @Google <brett.maxfield@gmail.com> wrote:
On Mon, Jul 26, 2010 at 5:29 PM, OSHIM <mhoshim@gmail.com> wrote:
I configured my squid.conf file to authenticate with openldap. but my browser always asking for the username and password though i put the correct username and password.

here is my squid.conf

http_port 3128

auth_param basic program /usr/lib/squid/squid_ldap_auth -b "dc=mycentos,dc=net" -f "uid=%s" -h 127.0.0.1 -D "cn=manager,dc=mycentos,dc=net" -w swi2010 -s one -v 3
auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours

acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl webconfig_lan src 192.168.1.0/24
acl webconfig_to_lan dst 192.168.1.0/24
acl to_localhost dst 127.0.0.1/255.255.255.255
acl password proxy_auth REQUIRED

http_access allow manager localhost
http_access deny manager
http_access deny CONNECT !SSL_ports
http_access allow localhost password
http_access allow webconfig_to_lan
http_access allow webconfig_lan password
http_access deny all

You have defined the acl named "password", but where have you used it ?

I would try :

http_access allow manager localhost
http_access deny manager
http_access deny CONNECT !SSL_ports
http_access allow localhost
http_access allow webconfig_to_lan
http_access allow webconfig_lan password
http_access allow password
http_access deny all

Cheers
Brett