Re: [squid-users] squid_dap_group from Dieter Kluenter on 2003-01-15 (squid-users)

From: Dieter Kluenter <dieter@dont-contact.us>
Date: Wed, 15 Jan 2003 17:40:32 +0100

Hi,
I'm trying to authenticate against OpenLDAP-2.1.3
Here some lines from my squid.conf

-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.
ldap_auth_program /usr/local/squid/libexec/squid_ldap_group " -h
localhost -b ou=squid,o=myorgansation -m member -o groupofnames -u uid
-s one -T"
acl mygroup ldap_auth REQUIRED
http_access allow mygroup
http_access deny all
.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.--.

But the options -m -o -u -T don't seem to work anymore.

-Dieter

"Chris Blair" <Cblair@fargo.com> writes:

> Hi,
> I have been trying to get the squid_ldap_auth to work against a
> Win2k Active directory. Just curious what you are authenticating against
> and if you can provide me with any sample configs or good documents to
> setup this up.
>
> Thanks.
>
> -----Original Message-----
> From: Dieter Kluenter [mailto:dieter@dkluenter.de]
> Sent: Wednesday, January 15, 2003 9:31 AM
> To: squid-users@squid-cache.org
> Subject: [squid-users] squid_dap_group
>
> Hi,
> I just compiled and installed squid-2.5STABLE1 with module
> squid_ldap_group and I'm a bit confused on how to configure this
> module. In previous versions there have been the flags -m and -o in
> order to define an attribute and an objectclass. How can i now define
> these? I have the following ldif
> -.-.-.-.-.-.-.-.-.-.-.-
> ou=squid,o=myorganisation
> cn: squid
> objectclass: groupOfNames
> member: uid=user1,ou=unit2,o=myorganisation
> member: uid=user5,ou=unit3,o=myorganisation
> ...
> .-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.
>
> and so forth. In privious versions i just could pass the flags -m
> "member" and -o "groupofnames" in order to parse correct uid
> identification.
>
> The manual page (8) ist not quite clear about adding attribute and
> objectclass identifiers to the searchstring.
> In want all members of ou=squid to be authenticated. Can anybody help?
>
> -Dieter
> --
> Dieter Kluenter | Systemberatung
> Tel:040.64861967 | Fax: 040.64891521
> mailto: dkluenter@schevolution.com
> http://www.schevolution.com/tour
>
>

-- 
Dieter Kluenter  | Systemberatung
Tel:040.64861967 | Fax: 040.64891521
mailto: dkluenter@schevolution.com
http://www.schevolution.com/tour

Received on Wed Jan 15 2003 - 09:40:43 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:12:41 MST