[squid-users] OpenLDAP group

Hi.

(squid-3.0.STABLE9 + samba-3.2.4 + openldap-stable-20080813)
Until now, I used Squid + Active Directory succefully.
There is a group InternetWebDefault. Only the users in this group have
access to navigate on Squid.
Now, my squid.conf looks like this:

###########
auth_param ntlm program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp
auth_param ntlm children 10
auth_param ntlm keep_alive off
auth_param basic program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-basic
auth_param basic children 10
auth_param basic realm Proxy
auth_param basic credentialsttl 2 hours

external_acl_type NT_global_group children=10 %LOGIN
/usr/local/squid/libexec/wbinfo_group.pl

acl group_webdefault external NT_global_group InternetWebDefault
http_access deny !group_webdefault
##########

The access.log is showing the users.

Now, I have OpenLDAP + Samba configured. The users are authenticating
fine in the domain.
I'm stuck in the Squid configuration to do the same as in the Active Directory.
How can I do that? I need to have the users showing in the access.log.

I tryied many configurations. This below is one of them:

###########
auth_param basic program /usr/local/squid/libexec/squid_ldap_auth -v 3
-b "dc=crede12,dc=seduc,dc=ce,dc=gov,dc=br" -f uid=%s localhost
auth_param basic children 5
auth_param basic realm Proxy Crede12
auth_param basic casesensitive off
auth_param basic credentialsttl 10 minute

external_acl_type ldap_group children=10 %LOGIN
/usr/local/squid/libexec/squid_ldap_group -b
"ou=Groups,dc=sub1,dc=sub,dc=one,dc=two,dc=three" -B
"ou=Users,dc=sub1,dc=sub,dc=one,dc=two,dc=three" -f
"(&(memberUid=%u)(cn=%g))" -h localhost -p 389 -v 3

acl ProxyUsers external ldap_group InternetWebDefault
http_access allow ProxyUsers
###########

Regards,

-- 
M. Rodrigo Monteiro
falecom_at_rodrigomonteiro.net
"Free as in Freedom, not free as in free beer"
Linux User # 403730