tis 2006-04-04 klockan 15:30 -0500 skrev Walter Pabon Guerra:
> hi, i can't use my ldap groups with squid autentification, this is my
> configuration and the squid can't accept the groups from ldap.......
> external_acl_type ldap_group %LOGIN /usr/sbin/squid_ldap_group -b
> "ou=Grupo de Accesos a Internet,dc=pronaa,dc=edu,dc=pe" -D
> "cn=admin,dc=pronaa,dc=edu,dc=pe" -F "(cn=%s)" -f
> "(&(objectclass=posixGroup)(cn=%g)(memberUid=%u))" -w pronaa -h
> 192.168.25.215 -p 389 -v 3 -B "ou=Grupo de Accesos a
> Internet,dc=pronaa,dc=edu,dc=pe"
-B looks odd.. are you sure your users are below "ou=Grupo de Accesos a
Internet"? Should be the same as -b to squid_ldap_auth..
Other than that it looks reasonable.
> acl grupo1 external ldap_group Grupo1 REQUIRED
No REQUIRED here.. unless ofcourse you want the ACL to also match a
group named REQUIRED.
Regards
Henrik
This archive was generated by hypermail pre-2.1.9 : Mon May 01 2006 - 12:00:02 MDT