Hi, Jamie Nameless...
On Tue, May 13, 2003 at 11:17:27AM -0700, jamie wrote:
> Hey gang, I am looking for some ldap auth suggestions. First I am a bit
> confused as to what piece of add on software to user for auth. I have seen
> about 3 or 4 different ldap modules. squid_ldap_auth, squid_auth_ldap etc
> etc.
Should be all the same. However only one authenticator should come with
your distribution package.
> It looks as if squid_ldap_auth comes with squid but it seems as if I need to
> compile squid with this software in order for it to work. Is their any way I
> can just plug it in to work with say an RPM based installation?
How do you mean "plug in"? You are free to use it as an external
authenticator - it is a seperate program which is however part of the
Squid package. Do you expect an installation wizard or a drag-and-drop
GUI? Depending on your distribution you should blame the package
maintainer if there is no authenticator shipped with the package.
You are free to grab the sources and compile the package yourself.
> Secondly, we are a k12 school dist, and I am thinking that our best bet for
> managing what users can auth and not is by group. If a user is a member of
> net-access group then they can use the net. If not they will have no access.
Authentication by group? You mean authorisation. You can use the
external_acl capable program "squid_ldap_group" which can do that
authorisation for you.
> Third, I haven't seen any how to's out there. Can anyone point me into the
> right direction?
You will need to know a bit about LDAP. Said that you will need to read
the Squid documentation and play around with squid_auth_ldap and
squid_ldap_group. That's not a trivial task. Search the archive of this
mailing list to get an idea of how others do that. It's a FAQ.
Christoph
-- ~ ~ ".signature" [Modified] 3 lines --100%-- 3,41 AllReceived on Tue May 13 2003 - 15:46:17 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:16:38 MST