Re: [squid-users] Doku and question: Squid + squid_ldap_auth + Tru64 from Ghislain Garcon on 2006-01-27 (squid-users)

From: Ghislain Garcon <gigi_8439@dont-contact.us>
Date: Fri, 27 Jan 2006 17:18:33 +0100

Response 1 : You have two -b option. Keep only this one :

-b "dc=emea,dc=zf-world,dc=com"

Is your ldap server accept simple connexions?
Check password and your bind dn.

Response 2 : Yes

Werner.Rost@zf.com a écrit :

>==============================================================================
>Some hints for installing squid_ldap_auth (squid 2.5 Stable 12) on Tru64 5.1A
>==============================================================================
>
>(1) Install OpenLDAP
>
> IAEOLDAP590 installed OpenLDAP 2.0.23 (Directory Services)
>
>
>(2) Squid: make configure
>
> cd /usr/local/squid-2.5.STABLE12
> ./configure --enable-auth="ntlm,basic" \
> --enable-external-acl-helpers="winbind_group,ldap_group" \
> --enable-basic-auth-helpers="winbind,LDAP" \
> --enable-ntlm-auth-helpers="winbind" \
> --prefix=/usr/local/squid
>
>(3) find out the location of the file ldap.h
> On my machine directory /usr/internet/openldap/include
>
> copy all files of this directory to
> /usr/local/squid-2.5.STABLE12/helpers/external_acl/ldap_group
>
>
> edit /usr/local/squid-2.5.STABLE12/helpers/external_acl/ldap_group/Makefile:
>
> LIBS = -L/usr/internet/openldap/lib -lldap -llber
>
>
> find out the location of the file libldap.so
> On my machine directory /usr/internet/openldap/lib
>
> copy all files *.so of this directory to /usr/lib
>
>
>(4) Squid: make all
> make install
>
>
>---------------------------------------------------------------------------------
>
>Now squid_ldap_auth is running well.
>
>It would be nice if someone can give me sone hints how I can test squid_ldap_auth
>interactive without squid.
>
>I tried:
>
>/usr/local/squid/libexec/squid_ldap_auth \
> -b o=<LOCATION> \
> -h <ip> \
> -D "cn=<adminuseer>,cn=Users,dc=emea,dc=zf-world,dc=com" \
> -w "<password of adminuser>" \
> -b "dc=emea,dc=zf-world,dc=com" -f sAMAccountName=%s
>
>and entered <username><blank><password>
>
> miller secret
>
>In all cases this leads to
>
> squid_ldap_auth: WARNING, could not bind to binddn 'Invalid credentials'
> ERR Success
>
>
>Question 1: Something wrong with the syntax above?
>
>Question 2: Is it ok to enter <username><blank><password> ?
>
>
>Werner Rost
>
>
>
Received on Fri Jan 27 2006 - 09:18:43 MST

This archive was generated by hypermail pre-2.1.9 : Wed Feb 01 2006 - 12:00:01 MST