Re: Fw: [squid-users] Re: squid_ldap_auth and Windows 2003 AD

From: Colin Farley <Colin.Farley@dont-contact.us>
Date: Wed, 16 Nov 2005 08:58:24 -0600

Thanks for the more detailed explanation. I gave this a try and it solved
the problem. It's funny how Microsoft can't even get their documentation
right. I guess I should have been suspicious when I saw that the article
said Windows 2000 allows anonymous searches. Anyway, thanks again.

Colin

                                                                           
             Serassio Guido
             <guido.serassio@a
             cmeconsulting.it> To
                                       Colin Farley
             11/15/2005 01:32 <Colin.Farley@ecarecenters.com>
             PM cc
                                       squid-users@squid-cache.org
                                                                   Subject
                                       Re: Fw: [squid-users] Re:
                                       squid_ldap_auth and Windows 2003 AD
                                                                           
                                                                           
                                                                           
                                                                           
                                                                           
                                                                           

Hi Colin,

At 20.10 15/11/2005, Colin Farley wrote:

>No, I have not since the searches are not anonymous and it works if I
>specify an ou:
>
>-D "cn=Squid,ou=IT,ou=Users,ou=site1,ou=subcompany,dc=mydomain,dc=net" -w
>password
>
>tells squid_ldap_auth to authenticate with the specified account and
>password before doing searches.

As I wrote in a my previous email, I have found your SAME problem
using LDAP authentication with apache, using NOT anonymous searches:
After the 2000 ==> 2003 upgrade of my AD domain, LDAP authentication
stopped to work. After the change of DsHeuristics, LDAP works again.

In the Microsoft KB Article, there is something wrong: by default
Windows 2000 doesn't accept anonymous searches on the directory.

  Regards

Guido

-
========================================================
Guido Serassio
Acme Consulting S.r.l. - Microsoft Certified Partner
Via Lucia Savarino, 1 10098 - Rivoli (TO) - ITALY
Tel. : +39.011.9530135 Fax. : +39.011.9781115
Email: guido.serassio@acmeconsulting.it
WWW: http://www.acmeconsulting.it/
Received on Wed Nov 16 2005 - 07:59:29 MST

This archive was generated by hypermail pre-2.1.9 : Thu Dec 01 2005 - 12:00:09 MST