[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ldap+squid authentication



ÿþ<�!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <�HTML><�HEAD> <�META content="text/html; charset=unicode" http-equiv=Content-Type> <�META content="MSHTML 5.00.2314.1000" name=GENERATOR> <�STYLE><�/STYLE> <�/HEAD> <�BODY bgColor=#ffffff> <�DIV><�FONT face=Arial size=2>thanks a lot....!&nbsp; I could now execute ldapsearch with -D option.<�/FONT><�/DIV> <�DIV><�FONT face=Arial size=2>&nbsp;<�/FONT><�/DIV> <�DIV><�FONT face=Arial size=2>Can you PLZ help in my ldap authentication for squid....!<�/FONT><�/DIV> <�DIV>&nbsp;<�/DIV> <�DIV><�FONT face=Arial size=2>&nbsp;I want to authenticate squid taking givenname&nbsp; and userpassword in my ldif&nbsp; as login name. But could"nt :((<�/FONT><�/DIV> <�DIV>&nbsp;<�/DIV> <�DIV><�FONT face=Arial size=2>&nbsp;<�/FONT><�FONT face=Arial size=2>[root@ldap LDAP]# ./squid_ldap_auth -D 'givenname=Larry, o=usm' -b&nbsp;&nbsp; dc=usm,dc=com ldap<�BR>Larry larry<�BR>ERR&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; <�/FONT><�/DIV> <�DIV>&nbsp;<�/DIV> <�DIV><�FONT face=Arial size=2>#########&nbsp; I configured squid as ##########<�/FONT><�/DIV> <�DIV>&nbsp;<�/DIV> <�DIV><�FONT face=Arial size=2><�FONT face=Arial size=2>authenticate_program /usr/local/squid/bin/squid_ldap_auth&nbsp;&nbsp;ldap.mydomain.com&nbsp;&nbsp;&nbsp;&nbsp;<�/FONT><�/FONT><�/DIV> <�DIV><�FONT face=Arial size=2><�FONT face=Arial size=2>acl&nbsp; ldap proxy_auth REQUIRED&nbsp;&nbsp;&nbsp;&nbsp;<�/FONT><�/FONT><�/DIV> <�DIV><�FONT face=Arial size=2><�FONT face=Arial size=2>http_access allow ldap&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<�/FONT><�/FONT><�/DIV> <�DIV><�FONT face=Arial size=2><�FONT face=Arial size=2>http_access&nbsp;deny all&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; <�/FONT><�/FONT><�/DIV> <�DIV><�FONT face=Arial size=2>&nbsp;<�/FONT><�/DIV> <�DIV><�FONT face=Arial size=2>############ My slapd.conf ##########3<�/FONT><�/DIV> <�DIV>&nbsp;<�/DIV> <�DIV><�FONT face=Arial size=2>include&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; /usr/local/etc/openldap/schema/core.schema<�BR>include&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; /usr/local/etc/openldap/schema/cosine.schema<�BR>include&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; /usr/local/etc/openldap/schema/inetorgperson.schema<�/FONT><�/DIV> <�DIV>&nbsp;<�/DIV> <�DIV><�FONT face=Arial size=2>database&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; ldbm<�BR>suffix&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; "o=usm"<�BR>suffix&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; "dc=ldap,dc=usm,dc=com"<�BR>rootdn&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; "cn=Admin,dc=ldap,dc=usm,dc=com"<�BR>#rootdn&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; "cn=Admin,o=usm"<�BR>rootdn&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; "givenname=Larry,o=usm"<�BR>rootpw&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; secret<�BR>directory&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; /usr/local/var/openldap-ldbm/<�BR>defaultaccess&nbsp;&nbsp; read<�BR>schemacheck&nbsp;&nbsp;&nbsp;&nbsp; on<�BR>lastmod&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; on<�/FONT><�/DIV> <�DIV>&nbsp;<�/DIV> <�DIV><�FONT face=Arial size=2>index&nbsp;&nbsp; cn,sn,st&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; pres,eq,su<�/FONT><�/DIV> <�DIV><�FONT face=Arial size=2><�/FONT>&nbsp;<�/DIV> <�DIV><�FONT face=Arial size=2>~&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; <�/FONT><�/DIV> <�DIV>&nbsp;<�/DIV> <�BLOCKQUOTE style="BORDER-LEFT: #000000 2px solid; MARGIN-LEFT: 5px; MARGIN-RIGHT: 0px; PADDING-LEFT: 5px; PADDING-RIGHT: 0px"> <�DIV style="FONT: 10pt arial">----- Original Message ----- <�/DIV> <�DIV style="BACKGROUND: #e4e4e4; FONT: 10pt arial; font-color: black"><�B>From:<�/B> <�A href="mailto:mhafizm@celcom.net.my" title=mhafizm@celcom.net.my>Hafiz Malik<�/A> <�/DIV> <�DIV style="FONT: 10pt arial"><�B>To:<�/B> <�A href="mailto:kavi_veda@yahoo.com" title=kavi_veda@yahoo.com>kavitha<�/A> ; <�A href="mailto:openldap-software@OpenLDAP.org" title=openldap-software@OpenLDAP.org>openldap-software@OpenLDAP.org<�/A> <�/DIV> <�DIV style="FONT: 10pt arial"><�B>Sent:<�/B> Saturday, December 01, 2001 7:12 AM<�/DIV> <�DIV style="FONT: 10pt arial"><�B>Subject:<�/B> Re: ldap+squid authentication<�/DIV> <�DIV><�BR><�/DIV> <�DIV><�FONT face=Verdana size=2>hi there..<�/FONT><�/DIV> <�DIV><�FONT face=Verdana size=2>as far as i concerned if you want to do ldapsearch via "binddn" or "-D" you must include "-w" for rootpw.<�/FONT><�/DIV> <�DIV><�FONT face=Verdana size=2><�/FONT>&nbsp;<�/DIV> <�DIV><�FONT face=Verdana size=2>ldapsearch -x&nbsp; -b 'o=usm'&nbsp; UID=Jim&nbsp; servername<�/FONT><�/DIV> <�DIV><�FONT face=Verdana size=2>or<�/FONT><�/DIV> <�DIV><�FONT face=Verdana size=2>ldapsearch -x&nbsp; -D "UID =Jim,o=usm"&nbsp; -w secret -b 'o=usm'&nbsp;servername<�/FONT><�/DIV> <�DIV><�FONT face=Verdana size=2>where "UID=Jim,o=usm" should be&nbsp;ur rootdn and "secret" is ur rootpw<�/FONT><�/DIV> <�DIV>&nbsp;<�/DIV> <�DIV>&nbsp;<�/DIV><�/BLOCKQUOTE><�/BODY><�/HTML>