On Wednesday 07 May 2003 17.56, Christoph Haas wrote:
> We discovered a stupid problem. Although the default search scope
> in "ldap_auth" (shipped with Squid 2.5.2-1) is by default set to
> "sub" (which should mean to search in this tree and all subtrees)
> only users in the current tree can be authenticated. I just get an
> "ERR". I can even set "-s sub" with the same result. I have already
> checked the source code to see whether "-s" is a placebo option -
> it is not.
Works here..
Note that for search scope to work you use the search mode of the
helper (-f) and not the direct lookup mode (-u).. The direct lookup
mode assumes a flat structure and does not at all search the
directory to locate the user, it just assumes the DN of the user
based on the login name.
Regards
Henrik
-- Donations welcome if you consider my Free Squid support helpful. https://www.paypal.com/xclick/business=hno%40squid-cache.org If you need commercial Squid support or cost effective Squid or firewall appliances please refer to MARA Systems AB, Sweden http://www.marasystems.com/, info@marasystems.comReceived on Wed May 07 2003 - 15:23:39 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:16:21 MST