Hello Henrick,
I tried the sysntax you gave me. While there were no errors, it doesn't seem
to be working. I put one user in a ldap group called browsers, and tried to
restrict access based on that.
ALL users are able to access after LDAP authentication, irrespective of
whether they are part of that group or not.
I am using squid 2.5 pre13
I am attaching my squid.conf for reference.
Thanks and regards,
Michael Fuller
----- Original Message -----
From: "Henrik Nordstrom" <hno@marasystems.com>
To: "Michael Fuller" <fullerms@hotmail.com>; <squid-users@squid-cache.org>
Sent: Friday, September 13, 2002 1:33 PM
Subject: [squid-users] Re: using squid_ldap_group in squid 2.5 pre
> Michael Fuller wrote:
> > Hello all,
> >
> > I have been trying to use LDAP based external ACLs with squid 2.5 pre.
I
> > have been trying to construct the ACLs, without success for the past two
> > weeks.
> >
> > While the following command:
> >
> > ldapsearch -x '(&(objectclass=groupofnames)(member= cn=dycsteofc,
> > o=southern railway))' cn
> >
> > works well and returns the cn of the group(s) to which the user belongs,
I
> > have been unable to get the same results with squid_ldap_group.
> >
> > Will someone help me on this ?
>
> squid_ldap_group -b "o=southern railway, c=???" -f
> "(&(objectclass=groupofnames)(member= cn=%v, o=southern
railway)(cn=%a))" -h
> localhost
>
> To have spaces in the helper arguments you will need to use 2.5.PRE13 or a
> snapshot release 2002-09-08 or later. For earlier versions you will need
to
> create a small wrapper script for providing the arguments to the helper.
>
> Regards
> Henrik
>
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:10:22 MST