RE: [squid-users] Pb ldap with SquidNT

Sorry, but I use the windows Authenticator ?
I create a local group security (not global) on my AD (win server 2003)
I add my name to the member of the group.
When I browse my AD with adsiedit.msc on my name I have : memberof :
CN=leweb,OU=USERS,DC=domaine,DC=fr
Next I try this command line :
win32_auth.exe -A leweb -O domaine, but I have a error : ERR User not
allowed to use this cache
If I try win32_auth.exe -D leweb -O domaine, I have OK ! Strange...
Could you help me ?
Thanks

Jérôme

-----Message d'origine-----
De : Henrik Nordstrom [mailto:henrik@henriknordstrom.net]
Envoyé : mardi 20 juin 2006 21:53
À : Jerome
Cc : squid-users@squid-cache.org
Objet : Re: [squid-users] Pb ldap with SquidNT

tis 2006-06-20 klockan 14:39 +0200 skrev Jerome:
> Hi !
>
> I use SquidNT on a Windows 2000 Server and I have a problem with
> Active Directory authentification.
> Could you help me ?
> There’s my problem :
> I use the auth_param basic program for authenticate my user, like this :
> auth_param basic program c:/squid/libexec/squid_ldap_auth.exe -R -b
> "dc=domaine,dc=fr" -f "(&(objectclass=person) (sAMAccountName=%s)
> (memberof=CN=leweb,OU=USERS,DC=domaine,DC=fr))" -D
> "cn=Administrateur,cn=Users,dc=domaine,dc=fr" -w "passAdmin" -h
> server_ip When I test this code in command line, I have an “OK”.

Why don't you use the native Windows authenticator? Should be more reliable
and a lot easier to configure (assuming the server is a member server of the
AD).

> But when I try to connect with Squid, I have an error in the cache.log
file.
> The error is : squid_ldap_auth: WARNING, LDAP search error 'Erreur de
> filtre' in French : “filter error”

I am not sure squid.conf supports quoted arguments. Try removing the quotes
and all spaces between them..

Regards
Henrik
Received on Wed Jun 21 2006 - 10:07:56 MDT