Hi,
This is some lines from squid.conf (I also use a nescape directory)
authenticate_program /usr/local/squid/bin/authscript
authenticate_children 20
acl password proxy_auth REQUIRED
proxy_auth_realm Proxy
And in /usr/local/squid/bin/authscript I have
#!/bin/sh
exec /usr/local/squid/bin/ldap_auth gvdir01 389 "O=organization" uid
To use a different group, change the dn
Hope this help,
Olivier
Dombrofsky Klaus-Peter wrote:
>
> Hi,
> I am now experimenting with squid_ldap_auth.
> I have a netscape directory server 4.1 running with
> a certain LDAP-structure o=... ou=... ou=People.
>
> I changed in the source LDAP/squid_ldap_auth.c:
> SEARCHBASE = "ou=People, ou=subdom, o=dom"
>
> I created in squid.conf:
>
> acl LDAP proxy_auth REQUIRED
> http_access allow LDAP
> authenticate_program /usr/sbin/squid_ldapauth ldap1.mydomain.com
>
> In the logfile i see:
> WARNING: authenticator #1 (FD 4) exited
>
> if i enter a valid user + password in the squid-popup.
>
> First thing i want is that every valid user can access the proxy.
> Second step is every user belonging to a certain group is
> allowed to access the proxy.
>
> Has anyone tried this kind of authentication ??
> I think i didn't activate the LDAP-authentication in the right way ?
> How do i activate this authentication ??
-- Regards, Oliver somewhere in The Hague -- __________________________________________________________________ mailto:olivier@daury.net ~ ICQ#: 18503104 ~ PGP key id: 0xC9976DCD slamp on Undernet ~ Phone:(+31) 70 340 38 32 ~ AIM: slamp@chez.com autre citation ? -> http://www.officehours.com/cgi-bin/mscit.exe "Il ne sert à rien d'éprouver les plus beaux sentiments si l'on ne parvient pas à les communiquer." - Stefan Zweig, ClarissaReceived on Tue Jan 11 2000 - 12:23:30 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:50:19 MST