RE: [squid-users] ldap auth testing

From: Rick Whitley <rickwh@dont-contact.us>
Date: Tue, 27 Jul 2004 13:43:58 -0500

Here is my test:

proxy2:ldapsearch -v -D "cn=LDAPUser,ou=academics,o=dbu" -W -h
10.5.10.215 "(cn=*) cn sn
ldap_init( 10.5.10.215, 0 )
Enter LDAP Password:xxxxxxxxxx
SASL/EXTERNAL authentication started
ldap_sasl_interactive_bind_s: unknown authentication method (86)
      additional info: SASL(-4): no mechanism available:

I enter the bindpassword and the rest is displayed immediatly. Thanks
again for all the help.

rick...
Rom.5:8

>>> Chris Perreault <Chris.Perreault@Wiremold.com> 7/27/2004 10:45:42
AM >>>
What did you type at the prompt? It seems like a parameter is missing.
(perhaps the authentication method)
ldapsearch --help
gives a list of options.

Chris

-----Original Message-----
From: Rick Whitley [mailto:rickwh@dbu.edu]
Sent: Tuesday, July 27, 2004 11:42 AM
To: squid-users@squid-cache.org; Chris Perreault
Subject: RE: [squid-users] ldap auth testing

Thanks for the info. When I run ldapsearch I get the following
message:

SASL/EXTERNAL authentication started
ldap_sasl_interactive_bind_s: unknown authentication method (86)
      additional info: SASL(-4): no mechanism available:

Any thoughts?

rick...
Rom.5:8

>>> Chris Perreault <Chris.Perreault@Wiremold.com> 7/27/2004 10:00:01
AM >>>
Go to the source code's helper/basic_auth/LDAP directory and check out
the
README there. Run the ldap auth helper outside of squid, and see if you
are
reaching the ldap server or do a ldapsearch to make sure you can reach
the
ldap directory. (man ldapsearch)

>From my experience, and from what I've read in this list, it makes
sense to
make sure the helper works outside of the squid process. If it doesn't
work
there, it sure won't work within squid:)

Chris

-----Original Message-----
From: Rick Whitley [mailto:rickwh@dbu.edu]
Sent: Tuesday, July 27, 2004 10:52 AM
To: squid-users@squid-cache.org; Chris Perreault
Subject: RE: [squid-users] ldap auth testing

I restarted squid with the command options listed, but I don't get any
ldap
info. I don't get any info at all. Here is what the access.log file
lists:

1090917920.557 22 10.5.200.201 TCP_DENIED/407 1765 GET
http://www.mozilla.org/products/firefox/start/ ctdlaptop NONE/-
text/html

The login dialog box returns pretty quick. Is there a way to determine
if I
am even talking to the ldap server?

rick...
Rom.5:8

>>> Chris Perreault <Chris.Perreault@Wiremold.com> 7/26/2004 10:53:25
AM >>>
I usually start squid with a

./squid -N -d1

While testing stuff out. It make for a simple ctrl-c to stop it and
change
the config file around. Your squid/var/log or wherever you specified
you
wanted log files to go will have info too.

Chris

-----Original Message-----
From: Rick Whitley [mailto:rickwh@dbu.edu]
Sent: Monday, July 26, 2004 9:49 AM
To: squid-users@squid-cache.org
Subject: [squid-users] ldap auth testing

I am running squid2.5.stable5 on suse 9.0. I am trying to test my ldap
connection. Is there a log file somewhere that I can see what is going
on
with the connection? I read a post the other day where they had
re-compiled
squid with debug markers (probably not the right term). Do I need to do
that
for ldap? The ldap source has messages, are they being written
somewhere?

rick...
Rom.5:8
Received on Tue Jul 27 2004 - 12:44:38 MDT

This archive was generated by hypermail pre-2.1.9 : Sun Aug 01 2004 - 12:00:02 MDT