hello,
I'm trying to migrate on digest sheme, the problem is that many clients doesn't works in this case - incompatible - for example wget.
So I need a negotiate identification scheme, or something similar like: If digest fail the user try the second ident method.
1 - Digest
2 - Ldap basic
I thing I misunderstanding something, because there is no negotiation.
I can do something like this with squid 3.2 ?
auth_param negotiate program /usr/lib/squid/digest_ldap_auth -b "ou=People,dc=ldap,dc=test" -h 127.0.0.1:389 -u "uid" -A "l" -D "ou=People,dc=ldap,dc=test"
auth_param digest realm TEST
auth_param digest children 200 startup=20 idle=20
auth_param digest nonce_garbage_interval 5 minutes
auth_param digest nonce_max_duration 60 minutes
auth_param digest nonce_max_count 6
auth_param basic program /usr/lib/squid/squid_ldap_auth -v 3 -b ou=People,dc=ldap,dc=test -h 127.0.0.1:389
auth_param basic realm TEST2
auth_param basic children 100 startup=50 idle=20
Thanks for any advice.
Regards,
Fred
Received on Wed Feb 13 2013 - 10:16:23 MST
This archive was generated by hypermail 2.2.0 : Wed Feb 13 2013 - 12:00:04 MST