Hello ...
My squid work fine with Openldap, but I need change method authentication of user for groups , so I made the configuration follow .
# As linhas abaixo se referem a autenticaç de usuáos no AD
auth_param basic program /usr/local/squid/libexec/squid_ldap_auth -R -b "dc=amblivre,dc=com" -D "cn=proxy_user,ou=Internet,dc=amblivre,dc=com" -w "password" -f sAMAccountName=%s -h 192.168.4.55
auth_param basic realm Input your password auth_param basic children 5 auth_param basic credentialsttl 15 minutes
#acl senha proxy_auth REQUIRED #http_access allow senha
# ACL externa para autenticaç nas bases LDAP do PDC external_acl_type ldap_group %LOGIN /usr/local/squid/libexec/squid_ldap_group -R -b "dc=amblivre,dc=com" -D "cn=proxy_user,ou=Internet,dc=amblivre,dc=co m" -w "password" -f "(&(objectclass=person)(sAMAccountName=%v)(memberof=cn=%a,ou=Internet,dc=amblivre,dc=com))" -h 192.168.4.55
acl AcessoLivre external ldap_group AcessoLivre http_access AcessoLivre
When the I input user and passord for auth the Squid doesn´t recognize the credentials . There are some problem in my configuration ?
Thanks.
On Thursday, 26 November 2009 18:08:32 Bruno Steven wrote:
acl AcessoLivre external ldap_group AcessoLivre http_access AcessoLivre
Your http_access line seems broken ...
When the I input user and passord for auth the Squid doesn´t recognize the credentials .
I doubt this is the case. Are you getting authentication failed, or access denied errors? Is the authentication on the LDAP side succeeding (check the log entries from slapd when you enter your password).
There are some problem in my configuration ?
Seems so, and it doesn't look LDAP-related, see above.
Regards, Buchan
openldap-technical@openldap.org