[squid-users] squid_ldap_auth and filters

From: <Werner.Rost@dont-contact.us>
Date: Fri, 10 Mar 2006 12:27:41 +0100

squid_ldap_auth (of Squid 2.5 Stable 12) works fine with this script:

/usr/local/squid/libexec/squid_ldap_auth \
      -h ldapserver \
      -D "cn=adminaccount,ou=Service Accounts,ou=_SiteMgmt,ou=BNN,ou=DE,dc=emea,dc=company,dc=com" \
      -w "topsecret" \
      -b "ou=DE,dc=emea,company,dc=com" \
      -f sAMAccountName=%s

"ou=DE" says "german user".

But our AD structure looks like:

  emea.company.com
       CH
       CZ
       DE
       DK
       ES
       ...

The script above should say "OK" if the user is valid in ou=DE or ou=CH or ou=CZ or ...

I guess I need an intelligent filter "-f" to do this. Any ideas?

Werner Rost
Received on Fri Mar 10 2006 - 04:27:50 MST

This archive was generated by hypermail pre-2.1.9 : Sat Apr 01 2006 - 12:00:03 MST