[squid-users] how to squid_ldap_match

From: <lars.keller@dont-contact.us>
Date: Wed, 23 Jun 2004 10:53:33 +0200

Hello,

i want to use squid_ldap_match Squid ist Version 2.5 Stable 3 to check in
ADS groupmemberships of LDAP users. Must i first use squid_ldap_auth to
check for the user, or can i use only squid_ldap_match?
How must i do this?

I need an configuration example.

My squid.conf

auth_param basic program /usr/sbin/squid_ldap_auth -p xxx -u cn -R -b
ou=Users,ou=abc,ou=edf,dc=a,dc=b,dc=com -D
cn=Squid,ou=Users,ou=abc,ou=edf,dc=a,dc=b,dc=com -W xxxxx -f
"SamAccountName=%s" myADSserver

external_acl_type ldap_group %LOGIN /usr/sbin/squid_ldap_match -B
ou=Users,ou=abc,ou=edf,dc=a,dc=b,dc=com -F "SamAccountName=%S" -D cn=Squid
,ou=Users,ou=abc,ou=edf,dc=a,dc=b,dc=com -W xxxxx -b
cn=xxxxx,ou=Groups,ou=abc,ou=edf,dc=a,dc=b,dc=com -f"(&(SamAccountName
=%S)(member=%v))" -h myADSserver -p xxx

acl internetuser external ldap_group
cn=xxxxx,ou=Groups,ou=abc,ou=edf,dc=a,dc=b,dc=com

auth_param basic children 5

auth_param basic realm Proxy Internet

auth_param basic credentials

http_access allow Autorized

http_access allow internetuser

Thanks for your help.

Best regards

Lars Keller
Received on Wed Jun 23 2004 - 02:53:18 MDT

This archive was generated by hypermail pre-2.1.9 : Thu Jul 01 2004 - 12:00:03 MDT