Hi There,
I am currently using a Squid external helper auth to authenticate users to Novell eDirectory (squid_ip_user.pl). I have a script kindly provided by http://www.novell.com/coolsolutions/feature/17777.html which allows users to authenticate to eDirectory. eDirectory remembers their IP address, and Squid will determine the owner of the IP address and use their username for access to the Internet. If the user is not logged into eDirectory, Squid will prompt the user for authentication via LDAP. Regardless of squid_ip_user.pl or LDAP auth, the usernames are logged in the access log files.
I would like to introduce ICAP web filtering (with Trend IWSVA as we are already licensed for this product in our environment).
When I use ICAP using the external helper squid_ip_user.pl, Squid does not forward the username of the users to the ICAP server, only the IP address. If I use a traditional LDAP authenticator, Squid does forward the username to the ICAP server.
Has anyone experienced something similar? The external authenticator is simply outputting OK User=xxxx. Is there something else the authenticator needs to do to allow this form of auth to work with ICAP?
If anyone could help me out I'd be very happy.
The code for the squid_ip_user.pl is located at the link posted above.
Thanks for your help
Aaron
Received on Mon Apr 19 2010 - 12:59:32 MDT
This archive was generated by hypermail 2.2.0 : Mon Apr 19 2010 - 12:00:05 MDT