Hi,<div><br></div><div>Thanks Dieter Kluenter and Buchan Milne for answering to this, and everyone else that is reading this topic. =D</div><div><br></div><div><blockquote class="gmail_quote" style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0,8ex; border-left-width: 1px; border-left-color: rgb(204, 204, 204); border-left-style: solid; padding-left: 1ex; ">

It seems your ACLs are not sufficient for *any* simple binds to this DN.</blockquote><blockquote class="gmail_quote" style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0,8ex; border-left-width: 1px; border-left-color: rgb(204, 204, 204); border-left-style: solid; padding-left: 1ex; ">

<br></blockquote><blockquote class="gmail_quote" style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0,8ex; border-left-width: 1px; border-left-color: rgb(204, 204, 204); border-left-style: solid; padding-left: 1ex; ">

Please test the following on your LDAP server:</blockquote><blockquote class="gmail_quote" style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0,8ex; border-left-width: 1px; border-left-color: rgb(204, 204, 204); border-left-style: solid; padding-left: 1ex; ">

$ ldapwhoami -x -D uid=lamps,ou=usuarios,dc=pisolar -W</blockquote><blockquote class="gmail_quote" style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0,8ex; border-left-width: 1px; border-left-color: rgb(204, 204, 204); border-left-style: solid; padding-left: 1ex; ">

<br></blockquote><blockquote class="gmail_quote" style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0,8ex; border-left-width: 1px; border-left-color: rgb(204, 204, 204); border-left-style: solid; padding-left: 1ex; ">

Until this command works, please don&#39;t bother with anything related to squid.</blockquote></div><div><br></div><div>Right, this command isn&#39;t working for any user, except cn=admin,dc=pisolar. I&#39;m struggling with /etc/ldap/slapd.conf, to solve this. I probably tried to make the ACLs a bit too tight, and now they&#39;re choking me. =p</div>

<div><br></div><div><blockquote class="gmail_quote" style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0,8ex; border-left-width: 1px; border-left-color: rgb(204, 204, 204); border-left-style: solid; padding-left: 1ex; ">

Did you ever test simple binds to your LDAP server as these users except from</blockquote><blockquote class="gmail_quote" style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0,8ex; border-left-width: 1px; border-left-color: rgb(204, 204, 204); border-left-style: solid; padding-left: 1ex; ">

squid? It doesn&#39;t seem like it ...</blockquote><div><br></div><div>I use this ldap base to authenticate my GLPI () system. But I think GLPI just grab all my base, using the ldap admin password, and transports it to it&#39;s mysql database. =/</div>

<div><br></div><div><br></div><div>I&#39;m currently testing different ACLs in /etc/ldap/slapd.conf. Right now, these are the rules:</div><div><br></div><div><div><b>access to *</b></div><div><b>by dn=&quot;cn=admin,dc=pisolar&quot; write</b></div>

<div><b>#by anonymous none</b></div><div><b>#by self none</b></div><div><b>by * read</b></div></div><div><b><br></b></div><div><div><b>access to attrs=userPassword,shadowLastChange</b></div><div><b>by dn=&quot;cn=admin,dc=pisolar&quot; write</b></div>

<div><b>by anonymous auth</b></div><div><b>by self write</b></div><div><b>by * none</b></div></div><div><b><br></b></div><div><div><b>access to dn.base=&quot;&quot; by * read</b></div></div><div><br></div><div>What kind of mistake am I doing there? =S</div>

<div><br></div><div><br></div><div>Once again, thank you all for helping me. ;]</div><div><br></div><br></div>