On Sat, 20 Dec 2003, Keppner, Christoph wrote:
> This is my squid_ldap_group - command in squid.conf
>
> external_acl_type ldap_group %LOGIN /usr/lib/squid/squid_ldap_group -b
> dc=dhc-gmbh,dc=com -D keppner@dhc-gmbh.com -w SeCrEt -f
> "(&(cn=Mitarbeiter)(member=uid=%u)) -F (sAMAccountName=%s) -h 192.168.42.10
> -p 389
The -f argument should be
-f "(&(cn=%g)(member=%u)(objectClass=groupOfNames))"
The username has already been expanded into a full DN by the -F filter,
and you want to be able to reuse the same external_acl_type for different
group matches via the acl directive..
Regards
Henrik
Received on Sat Dec 20 2003 - 12:38:18 MST
This archive was generated by hypermail pre-2.1.9 : Thu Jan 01 2004 - 12:00:18 MST