On Wed, 13 Oct 2004, Mark Krawec wrote:
> ldapsearch -D squid@scif.com -w password -b "DC=scif,DC=com" -H
> ldaps://fddc02.scif.com:636/ -S /usr/local/ssl/certs -x
> "(SamAccountName=Squid1)" cn
> version: 2
>
> #
> # filter: (SamAccountName=Squid1)
> # requesting: cn
> #
>
> # Squid1 Proxy, FD, Fairfield, scif, com
> dn: CN=Squid1 Proxy,OU=FD,OU=Fairfield,DC=scif,DC=com
> cn: Squid1 Proxy
>
> echo "squid password" | /usr/local/squid/libexec/squid_ldap_auth -H
> ldaps://fddc02.scif.com:636/ -D "squid" -w "password" -P -b "DC=scif,DC=com"
> -f "(SamAccountName=Squid1)"
> squid_ldap_auth: WARNING, LDAP search error 'Operations error'
> ERR
The search bind DN is not correct, and does not match your
successful ldapsearch
To be least confusing your should specify a LDAP DN in both. Relying on
the LDAP server to understand shorthand aliases like squid@scif.com can be
a little confusing.
Regards
Henrik
Received on Thu Oct 14 2004 - 02:12:46 MDT
This archive was generated by hypermail pre-2.1.9 : Mon Nov 01 2004 - 12:00:02 MST