Sorry, but I use the windows Authenticator ? I create a local group security (not global) on my AD (win server 2003) I add my name to the member of the group. When I browse my AD with adsiedit.msc on my name I have : memberof : CN=leweb,OU=USERS,DC=domaine,DC=fr Next I try this command line : win32_auth.exe -A leweb -O domaine, but I have a error : ERR User not allowed to use this cache If I try win32_auth.exe -D leweb -O domaine, I have OK ! Strange... Could you help me ? Thanks Jérôme -----Message d'origine----- De : Henrik Nordstrom [mailto:henrik@xxxxxxxxxxxxxxxxxxx] Envoyé : mardi 20 juin 2006 21:53 À : Jerome Cc : squid-users@xxxxxxxxxxxxxxx Objet : Re: Pb ldap with SquidNT tis 2006-06-20 klockan 14:39 +0200 skrev Jerome: > Hi ! > > I use SquidNT on a Windows 2000 Server and I have a problem with > Active Directory authentification. > Could you help me ? > There?s my problem : > I use the auth_param basic program for authenticate my user, like this : > auth_param basic program c:/squid/libexec/squid_ldap_auth.exe -R -b > "dc=domaine,dc=fr" -f "(&(objectclass=person) (sAMAccountName=%s) > (memberof=CN=leweb,OU=USERS,DC=domaine,DC=fr))" -D > "cn=Administrateur,cn=Users,dc=domaine,dc=fr" -w "passAdmin" -h > server_ip When I test this code in command line, I have an ?OK?. Why don't you use the native Windows authenticator? Should be more reliable and a lot easier to configure (assuming the server is a member server of the AD). > But when I try to connect with Squid, I have an error in the cache.log file. > The error is : squid_ldap_auth: WARNING, LDAP search error 'Erreur de > filtre' in French : ?filter error? I am not sure squid.conf supports quoted arguments. Try removing the quotes and all spaces between them.. Regards Henrik
