Dear squid users,
I need help about my authentifaction problem with squid_ldap_group.
first i create a entry for squid_ldap_auth. i can login and i have web access and it works fine.
auth_param basic program /usr/sbin/squid_ldap_auth -P -R -b "dc=mb,dc=local" -D "cn=squid,cn=users,dc=mb,dc=local" -w secret1998 -f "(&(sAMAccountName=%s)(objectClass=Person))" -h 192.168.3.1
acl USERS proxy_auth REQUIRED
http_access allow USERS
in the next step i create this lines for my ldap group access.
external_acl_type ldapgroup concurrency=15 %LOGIN /usr/sbin/squid_ldap_group -P -R -b "ou=intern,dc=mb,dc=local" -f "(&(cn=%g)(member=%u))" -F "(&(sAMAccountName=%s)(objectClass=Person))" -D "cn=squid,cn=users,dc=mb,dc=local" -w secret1998 -h 192.168.3.1
acl ldapproxygroup external ldapgroup webaccess
http_access allow ldapproxygroup
i can login but i have no webaccess. i see the 407 error access denied in squid conf.
when i execute
heins:~ # /usr/sbin/squid_ldap_group -P -R -b "ou=intern,dc=mb,dc=local" -f "(&(cn=%g)(member=%u))" -F "(&(sAMAccountName=%s)(objectClass=Person))" -D "cn=squid,cn=users,dc=mb,dc=local" -w secret1998 -h 192.168.3.1
cwm webaccess
OK
i get ok but the user cwm canīt use the proxy.
Thank you for all the help.
Best Regards
Joachim
Received on Tue Jan 11 2005 - 15:03:24 MST
This archive was generated by hypermail pre-2.1.9 : Mon Mar 07 2005 - 12:59:35 MST