[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: ldap+squid authentication
ÿþ<�!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<�HTML><�HEAD>
<�META content="text/html; charset=unicode" http-equiv=Content-Type>
<�META content="MSHTML 5.00.2314.1000" name=GENERATOR>
<�STYLE><�/STYLE>
<�/HEAD>
<�BODY bgColor=#ffffff>
<�DIV><�FONT face=Arial size=2>thanks a lot....! I could now execute
ldapsearch with -D option.<�/FONT><�/DIV>
<�DIV><�FONT face=Arial size=2> <�/FONT><�/DIV>
<�DIV><�FONT face=Arial size=2>Can you PLZ help in my ldap authentication for
squid....!<�/FONT><�/DIV>
<�DIV> <�/DIV>
<�DIV><�FONT face=Arial size=2> I want to authenticate squid taking
givenname and userpassword in my ldif as login name. But could"nt
:((<�/FONT><�/DIV>
<�DIV> <�/DIV>
<�DIV><�FONT face=Arial size=2> <�/FONT><�FONT face=Arial size=2>[root@ldap
LDAP]# ./squid_ldap_auth -D 'givenname=Larry, o=usm' -b
dc=usm,dc=com ldap<�BR>Larry
larry<�BR>ERR <�/FONT><�/DIV>
<�DIV> <�/DIV>
<�DIV><�FONT face=Arial size=2>######### I configured squid as
##########<�/FONT><�/DIV>
<�DIV> <�/DIV>
<�DIV><�FONT face=Arial size=2><�FONT face=Arial size=2>authenticate_program
/usr/local/squid/bin/squid_ldap_auth ldap.mydomain.com <�/FONT><�/FONT><�/DIV>
<�DIV><�FONT face=Arial size=2><�FONT face=Arial size=2>acl ldap proxy_auth
REQUIRED <�/FONT><�/FONT><�/DIV>
<�DIV><�FONT face=Arial size=2><�FONT face=Arial size=2>http_access allow
ldap <�/FONT><�/FONT><�/DIV>
<�DIV><�FONT face=Arial size=2><�FONT face=Arial size=2>http_access deny
all
<�/FONT><�/FONT><�/DIV>
<�DIV><�FONT face=Arial size=2> <�/FONT><�/DIV>
<�DIV><�FONT face=Arial size=2>############ My slapd.conf ##########3<�/FONT><�/DIV>
<�DIV> <�/DIV>
<�DIV><�FONT face=Arial
size=2>include
/usr/local/etc/openldap/schema/core.schema<�BR>include
/usr/local/etc/openldap/schema/cosine.schema<�BR>include
/usr/local/etc/openldap/schema/inetorgperson.schema<�/FONT><�/DIV>
<�DIV> <�/DIV>
<�DIV><�FONT face=Arial size=2>database
ldbm<�BR>suffix
"o=usm"<�BR>suffix
"dc=ldap,dc=usm,dc=com"<�BR>rootdn
"cn=Admin,dc=ldap,dc=usm,dc=com"<�BR>#rootdn
"cn=Admin,o=usm"<�BR>rootdn
"givenname=Larry,o=usm"<�BR>rootpw
secret<�BR>directory
/usr/local/var/openldap-ldbm/<�BR>defaultaccess
read<�BR>schemacheck
on<�BR>lastmod on<�/FONT><�/DIV>
<�DIV> <�/DIV>
<�DIV><�FONT face=Arial size=2>index
cn,sn,st
pres,eq,su<�/FONT><�/DIV>
<�DIV><�FONT face=Arial size=2><�/FONT> <�/DIV>
<�DIV><�FONT face=Arial
size=2>~
<�/FONT><�/DIV>
<�DIV> <�/DIV>
<�BLOCKQUOTE
style="BORDER-LEFT: #000000 2px solid; MARGIN-LEFT: 5px; MARGIN-RIGHT: 0px; PADDING-LEFT: 5px; PADDING-RIGHT: 0px">
<�DIV style="FONT: 10pt arial">----- Original Message ----- <�/DIV>
<�DIV
style="BACKGROUND: #e4e4e4; FONT: 10pt arial; font-color: black"><�B>From:<�/B>
<�A href="mailto:mhafizm@celcom.net.my" title=mhafizm@celcom.net.my>Hafiz
Malik<�/A> <�/DIV>
<�DIV style="FONT: 10pt arial"><�B>To:<�/B> <�A href="mailto:kavi_veda@yahoo.com"
title=kavi_veda@yahoo.com>kavitha<�/A> ; <�A
href="mailto:openldap-software@OpenLDAP.org"
title=openldap-software@OpenLDAP.org>openldap-software@OpenLDAP.org<�/A> <�/DIV>
<�DIV style="FONT: 10pt arial"><�B>Sent:<�/B> Saturday, December 01, 2001 7:12
AM<�/DIV>
<�DIV style="FONT: 10pt arial"><�B>Subject:<�/B> Re: ldap+squid
authentication<�/DIV>
<�DIV><�BR><�/DIV>
<�DIV><�FONT face=Verdana size=2>hi there..<�/FONT><�/DIV>
<�DIV><�FONT face=Verdana size=2>as far as i concerned if you want to do
ldapsearch via "binddn" or "-D" you must include "-w" for rootpw.<�/FONT><�/DIV>
<�DIV><�FONT face=Verdana size=2><�/FONT> <�/DIV>
<�DIV><�FONT face=Verdana size=2>ldapsearch -x -b 'o=usm'
UID=Jim servername<�/FONT><�/DIV>
<�DIV><�FONT face=Verdana size=2>or<�/FONT><�/DIV>
<�DIV><�FONT face=Verdana size=2>ldapsearch -x -D "UID =Jim,o=usm"
-w secret -b 'o=usm' servername<�/FONT><�/DIV>
<�DIV><�FONT face=Verdana size=2>where "UID=Jim,o=usm" should be ur rootdn
and "secret" is ur rootpw<�/FONT><�/DIV>
<�DIV> <�/DIV>
<�DIV> <�/DIV><�/BLOCKQUOTE><�/BODY><�/HTML>