On Thu, 26 May 2005, Sunil S wrote:
Helo Selvam,
1. I use auth param as below:
auth_param basic program /d2/sw/squid-3.0/libexec/squid_ldap_auth -u CN -b CN=Users,DC=my,DC=company,DC=co,DC=in -h server_ip
Looks reasonable if you have a flat tree of users (all in the Users container) and use the full name as login name to the proxy.
For more advanced situations a search filter is required. See the squid_ldap_auth manual (shipped with Squid).
2. There should be a netlogon share on your domain controller (server_ip in the above case) with a file named "proxyauth" and that file should contain just one word "allow" inside it.
This is only required by the the smb_auth helper, not squid_ldap_auth.
Regards Henrik
