Re: [squid-users] squid authentication against windows Active Directory 2008 ?? from Kevin Blackwell on 2008-09-16 (squid-users)

From: Kevin Blackwell <akblackwel_at_gmail.com>
Date: Tue, 16 Sep 2008 11:58:05 -0500

No you wouldn't. I guess the squid one works too, everyone just
recommends that you user the samba one. In my experience, both work
fine. Have you tried the squid one?

Kevin

On Tue, Sep 16, 2008 at 3:56 AM, Gregory Machin <gdm_at_linuxpro.co.za> wrote:
> then I would have to install samba from what I understand, and or
> policy is not file sharing services allowed on the firewalls . Is
> there a way to get a single sign on with out installing samba ?
>
> On Mon, Sep 15, 2008 at 5:56 PM, Kevin Blackwell <akblackwel_at_gmail.com> wrote:
>> Gregory,
>>
>> I was running into the same problems. I finally for it working.
>>
>> Couple of questions
>>
>> 1. What OS
>> 2. Why not use ntlm_auth? Works better.
>>
>> Kevin
>>
>> On Mon, Sep 15, 2008 at 9:06 AM, Gregory Machin <gdm_at_linuxpro.co.za> wrote:
>>> Hi
>>> I'm batteling to get squid_ldap_auth to authenticate against M$
>>> windows Active Directory 2008 with my config below
>>>
>>> /usr/lib64/squid/squid_ldap_auth -b "OU=Organizational
>>> Structure,DC=example,DC=co,DC=za" -h 10.*.*.250 -D
>>> "CN=squid,OU=Other,OU=TC JHB,OU=Company,OU=Organizational
>>> Structure,DC=example,DC=co,DC=za" -w "Password1" -f
>>> "(&(uid=%s)(objectclass=user))"
>>>
>>> I have used a similar config on windows Active Directory 2003 and it
>>> worked perfectly fine. Is there a catch to authenticating against the
>>> 2008 version of AD ? or have I missed some thing ..
>>>
>>> How is the best way to debug this as squid does not log or output any
>>> errors even when in debugging mode ..
>>>
>>> when is run
>>> [root_at_gregory-workstation ~]# /usr/lib64/squid/squid_ldap_auth -b
>>> "OU=Organizational Structure,DC=techconcepts,DC=co,DC=za" -h
>>> 10.0.1.250 -D "CN=squid,OU=Other,OU=TC
>>> JHB,OU=Company,OU=Organizational
>>> Structure,DC=techconcepts,DC=co,DC=za" -w "Password1" -f
>>> "(&(uid=%s)(objectclass=user))" -v3
>>> gregory.machin Password1
>>> ERR Success
>>>
>>> I get "ERR Success"
>>> I believe I should get "OK"
>>> How can I get more info out of this interface ?
>>>
>>> Thanks in advance .
>>>
>>
>
Received on Tue Sep 16 2008 - 16:58:13 MDT

This archive was generated by hypermail 2.2.0 : Wed Sep 17 2008 - 12:00:03 MDT