Re: [squid-users] testing squid_ldap_auth

From: Corrado Azzaloni <corrado.azzaloni@dont-contact.us>
Date: Mon, 08 Sep 2003 16:24:40 +0200

Henrik Nordstrom wrote:

>mån 2003-09-08 klockan 14.50 skrev Corrado Azzaloni:
>
>
>
>>So, how can i test squid_ldap_auth with my ldap server (novell nw6)?
>>Someone have done this before?
>>
>>
>
>There is several users who use squid_ldap_auth with Novell NDS.
>
>Your need to use ldaps:// or reconfigure the NDS server to allow
>unencrypted login. To use ldaps:// you need to specify a ldaps:// URL
>to your LDAP server (see the man page for helper syntax).
>
>
>
>> From command line i've not response.
>>
>>
>
>What tests did you do?
>
>Regards
>Henrik
>
>
>
Thank you for response.

My NDS tree is:
o=main
    ou=msy
       ou=adr
             cn=myname
       ou=amm
       ou=swd
       ou=....

 From command line i wrote:
/usr/lib/squid/squid_ldap_auth -b ou=msy,o=main -h 10.5.83.240 -p 389 -u cn
or
/usr/lib/squid/squid_ldap_auth -b ou=adr,ou=msy,o=main -h 10.5.83.240 -p
389 -u cn

then "myname" <space> "password" <enter>

I always receive ERR response.

With ldapsearch i reached NDS tree, but i've to use -x option (simple auth).

Why does squid_ldap_auth don't work? Any idea?

My squid.conf is:
auth_param basic program /usr/lib/squid/squid_ldap_auth -b ou=msy,o=main
-h xx.xx.xx.xx -p 389 -u cn
auth_param basic children 1
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hour

acl password proxy_auth REQUIRED
http_access allow password

Is this correct?
Received on Mon Sep 08 2003 - 08:21:01 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:19:35 MST