Fathi can you forwartd this to Calros?!,
After many days and nights and after listsning closely to Henrik,
i got squid working against MSAD.
Carlos,
this is how you might want to try your setup. I tailored it for mine and it
works great!!!
here are the directives..
> authenticate_program /usr/lib/squid_ldap_auth -u cn -b
cd=users,dc=your,dc=domain,dc=com xxx.xxx.xxx.xxx
....
....
....
> acl password proxy_auth REQUIRED
....
....
....
> http_access allow password
-----Original Message-----
From: Fathi Ben Nasr [mailto:fathi.engineer@gnet.tn]
Sent: Thursday, September 05, 2002 3:55 AM
To: squid-users@squid-cache.org
Subject: Re: [squid-users] ldap_auth and Active Directory
Try removing -f. It doesn't work for me when I specify a filter.
Carlos Emir M Macedo a écrit :
> Hi everybody,
>
> I've searched the list's history but I found nothing.
>
> I'm trying to authenticate users through Active Directory, but
> without success.
>
> At bash, I can successfull authenticate users with the following
> command:
>
> # ldap_auth -b dc=infosoftware,dc=com,dc=br -R -D cn="Proxy
> User",cn=Users,dc=infosoftware,dc=com,dc=br -w XXXXXXX -f
> sAMAccountName=%s 192.168.0.1
>
> But when I use the same command at squid.conf I can't
> authenticate. Here is the config of my squid.conf:
>
> acl password proxy_auth REQUIRED
>
> authenticate_program /usr/lib/squid/ldap_auth -b
> dc=infosoftware,dc=com,dc=br -R -D cn="Proxy
> User",cn=Users,dc=infosoftware,dc=com,dc=br -w XXXXXXX -f
> sAMAccountName=%s 192.168.0.1
>
> With the following line at squid.conf I can authenticate users
> through Active Directory:
>
> authenticate_program /usr/lib/squid/smb_auth -W INFOSOFTWARE -U
> 192.168.0.1
>
> Does someone have done it and could help mme?
>
> Thanks in advance.
>
> ==============================
> Carlos Emir Mantovani Macedo
> Net Admin
> (19) 3256-4131
> Infosoftware Consulting
> www.infosoftware.com.br
> ==============================
>
>
____________________________________________________________________________
____________________
> Esta mensagem pode conter informação confidencial e/ou privilegiada. Se
> você não for o destinatário ou a pessoa autorizada a receber esta
> mensagem, não pode usar, copiar ou divulgar as informações nela contidas
> ou tomar qualquer ação baseada nessas informações. Se você recebeu esta
> mensagem por engano, por favor avise imediatamente o remetente,
> respondendo o e-mail e em seguida apague-o. Agradecemos sua cooperação.
>
> This message may contain confidential and/or privileged information. If
> you are not the addressee or authorized to receive this for the
addressee,
> you must not use, copy, disclose or take any action based on this message
> or any information herein. If you have received this message in error,
> please advise the sender immediately by reply e-mail and delete this
> message. Thank you for your cooperation.
(See attached file: smime.p7s)
Received on Thu Sep 05 2002 - 08:20:25 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:10:06 MST