[squid-users] Re: ERR is all I got when I use squid_ldap_auth from command line and browser reprompt for login

From: Adam Aube <aaube01@dont-contact.us>
Date: Tue, 07 Dec 2004 10:20:40 -0500

Yong Bong Fong wrote:

> Anyone knows what are the general cause of a reply of "ERR" when
> login from terminal?

Either you mistyped the username or password, or your LDAP settings for the
helper are wrong.

> *_when I typed:_
> * /usr/lib/squid/squid_ldap_auth -b "cn=root,dc=shinyang,dc=com,dc=my"
> -D "cn=bfyong,ou=qmail_users,cn=root,dc=shinyang,dc=com,dc=my" -w
> xxxxxx -f "(&(objectclass=person)(cn=%s))" -h 172.16.0.11

> username password (enter my login info)
> ERR

(downloading Squid source to check squid_ldap_auth man page)

Have you tried using the '-d' option to get more verbose output? That may
show where the problem is.

> *_When I used ldapsearch:
> _# ldapsearch -x -b
> "cn=bfyong,ou=qmail_users,cn=root,dc=shinyang,dc=com,dc=my" -h 172.16.0.11

> uid: bfyong
> cn: Yong Bong Fong

According to the output of ldapsearch, your LDAP directory uses 'uid' and
not 'cn' to store the username. See if it works if you change the '-f'
option to squid_ldap_auth to be:

-f "(&(objectclass=person)(uid=%s))"

Again, use of the '-d' option will give much more detail of exactly where
the problem is.

Adam
Received on Tue Dec 07 2004 - 08:20:52 MST

This archive was generated by hypermail pre-2.1.9 : Sat Jan 01 2005 - 12:00:01 MST