RE: LDAP authentication from Ilker Gokhan on 2000-08-02 (squid-users)

From: Ilker Gokhan <IlkerG@dont-contact.us>
Date: Wed, 2 Aug 2000 11:25:21 +0300

Hi,

>-----Original Message-----
>From: Squid Administration [mailto:mdiwan@lsyna.com]
>Sent: Tuesday, August 01, 2000 7:12 PM
>To: squid-users@ircache.net
>Subject: RE: LDAP authentication
>
>
>Dear Iker G and fellow squid users.,
>
>I have been reading the lists for info on squid 2.3 stable 4 and ldap
>server authentication. I have so far tried most of the suggestions in
>these lists.. they were quite help ful , thank you all.
>
>We have been runnig a squid proxy server for a number of
>years. and in a
>effort to upgrade the software and hardware i started to build another
>Proxy server.
>
> Now if you could help me solve this one small problem i would
>appreciate it.
>
>Here is my configuration to date:
>
>I am running RedHat Linux version 6.1 on a Compaq proliant server. Lets
>call it "Redboy" .
>It has an ip of 192.168.0.1 and a subnet of 255.255.255.224
> I installed Squid version 2.3-STABLE-4 on Redboy while running
>as user Squid .
>I defined a search base, made , and installed the ldap authentication
>module from the auth_modules directory of the untard archive.
> The search base I used was the same as the serch base used in
>the old version of squid running on our other server, which is running
>Redhat 5.1 and Squid version 1.93.2.16 ? from 1998/05/01.
>
> Searchbase i used in the module:
>
>#define SEARCHBASE "o=lhxxxxxxxusa.com uid
>cn=internet,o=lhxxxxxxxusa.com"
>
>Other changes i made to the module :
>
> sprintf(str,"uid=[%s][%s], %s",userid, password, SEARCHBASE);
><-- uncommented this line
> /*sprintf(str,"uid=%s, %s",userid,
>SEARCHBASE);*/ < --commented this line
>
> if(ldap_simple_bind_s(ld, str, password) != LDAP_SUCCESS)
> {
> fprintf(stderr, "\nUnable to
>bind\n"); <-- uncommented this line
> return 33;
> }
> return 0;
>}
>

i think you dont uncomment first sprintf line. let it be default these
lines..and define SEARCHBASE like
#define SEARCHBASE "ou=people,o=usa.ca"

Also you write just into the squid.conf:
authenticate_program /usr/local/squid/bin/squid_ldap_auth <ldap_server_name>

Then try..

Best regards,
Ilker G.
Received on Wed Aug 02 2000 - 02:27:58 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:54:41 MST