If you are using a current enough NDS that it supports LDAP it works great. One thing you have to watch out for is if your NDS/LDAP Server requires an encrypted connection for authentication or not (default is to require encryption but it can be turned off).
You will need to use at least Squid 2.5S2 (there have been a lot of fixes to LDAP)
Compile squid for Basic Authentication Helpers (and External ACL Helpers if you want to use LDAP Groups). I.E. configure --enable-basic-auth-helpers=LDAP --enable-external-acl-helpers=ldap_group
Then in the squid.conf file
auth_param basic program /usr/local/squid/libexec/squid_ldap_auth -b o=ORG -f (&(cn=%s)(objectClass=Person)) -D cn=user,o=org -w password -s sub ldap-host:ldap-port
then the standard acl's listed in the docs (helpers/baskc_auth/LDAP/squid_lap_auth.8)
Tim Bernhardson
Senior Technical Engineer
Certified Citrix Metaframe Administrator
Certified CyberGuard Administrator
Certified AIX 4.3 System Administrator
Sun-Maid Growers of California
7273 Murray Drive, Ste 18
Stockton, CA 95210
tbernhar at sunmaid dot com
>>> Maged <mhussein@ecs.gov.eg> 04/08/03 08:06AM >>>
anybody got ldap authentication with novell
edirectory is not an option here :(
Received on Tue Apr 08 2003 - 09:26:24 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:14:52 MST