Re: [squid-users] LDAP and Groups

From: Rob Asher <rasher_at_paragould.k12.ar.us>
Date: Wed, 28 May 2008 15:34:21 -0500

http://linux.die.net/man/8/squid_ldap_group

Specifying a good search filter was the hardest part for me. Here's the basic, relevant portions of mine from squid.conf for 2.6.STABLE13:

auth_param basic program /path/to/squid_ldap_auth .....
external_acl_type ldap-group %LOGIN /path/to/squid_ldap_group .....
acl valid_users proxy_auth REQUIRED
acl BannedGroup external ldap-group INTERNET_BANNED
http_access deny BannedGroup
http_access allow valid_users
http_access deny all

Hopefully that will at least get you going in the right direction,
Rob

-------------------------------------
Rob Asher
Network Systems Technician
Paragould School District
(870)236-7744 Ext. 169

>>> Squidly <squid_at_theindianmaiden.com> 5/28/2008 2:42 PM >>>
I have squid authenticating against my openLDAP server for all users
but I am unable to locate any reference to limiting access by an LDAP
group . If someone could point me in the right direction it would be
appreciated.

-- 
This message has been scanned for viruses and dangerous content by The MailScanner at the Paragould School District, http://paragould.k12.ar.us, and is believed to be clean.
Received on Wed May 28 2008 - 20:34:45 MDT

This archive was generated by hypermail 2.2.0 : Tue Aug 05 2008 - 01:05:14 MDT