Re: [squid-users] Testing ldap_auth from Henrik Nordstrom on 2002-01-28 (squid-users)

From: Henrik Nordstrom <hno@dont-contact.us>
Date: Tue, 29 Jan 2002 07:59:12 +0100

Right.. the comment is still there. My error.

You should follow what the man page says, not the comments in the
source. But setting it in the source like you did also works for the
moment even if it not how you are meant to set the basedn any more..

From your description of the LDAP directory it sounds like the basedn
for finding your users is ou=People,o=thiess.com.au,o=isp, but see
the man page for a full discussion on the different modes Squid
ldap_auth can operate in. In short, the basedn for Squid ldap_auth
should be the DN under where all users is located. Also, if your
users are in sub-trees below that DN or if the login name is not part
of the users DN then you need to use the search mode (does not seem
to be the case for you)

Regards
Henrik Nordström
Squid Developer
Squid ldap_auth maintainer

On Tuesday 29 January 2002 01.26, Peter Cheney wrote:
> Hi Henrik,
>
> The version of squid_ldap_auth is in squid-2.4.STABLE3 which I
> download from the squid-cahce.org web page.
> $ ls -l squid-2.4.STABLE3-src.tar.gz
> -rw-r--r-- 1 nobody nogroup 1081040 Jan 17 15:42
> squid-2.4.STABLE3-src.tar.gz
>
> It is being compiled on a compaq deskpro p2 running server install
> of rhl7.2 with only openldap libraries as extras.
>
> Many Thanks and Best Regards
>

> From: Henrik Nordstrom <hno@marasystems.com>
>
> What version of Squid ldap_auth are you using?
>
> The Squid-2.4.STABLE3 version do not even have the quoted lines
> anymore... (the basedn must now be specified on the command line as
> a parameter)
>
>
> Syntax for testing auth helpers is the same for all helpers, start
> the helper with correct arguments, then type
>
> username password
>
> The helpers expects one username and password per line of input,
> and will respond with OK or ERR.
>
> Peter Cheney wrote:
>
> > Oue directory layout is dn: uid=pcheney,
> > ou=People,o=thiess.com.au,o=isp this is working OK with
> > 2.3.STABLE4-ldap_auth on RH7.0
> >
> > Installing new system with RH7.2 & Squid-2.4.stable3
> > Prior to compiling I changed basdn in squid_ldap_auth.c
> > <snip>
> > /* Change this to your search base */
> > static char *basedn = "o=isp";
> > <pins>
> >
> > Is this correct thing to do? If yes then why is basdn required as
> > per man page if already set during compile?
> >
> > Can I test squid_auth_ldap from command line if so what is syntax
> > please?
Received on Tue Jan 29 2002 - 00:25:22 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:05:58 MST