Hi all, I want to configure my squid to validate users with AD. squid_ldap_auth is working without problems, but I tried to configure squid_ldap_group based on this successful ldapsearch query: $ ldapsearch -xLLL -b "OU=Lala,DC=lala,DC=cl" -h 192.168.80.10 -D "debianized@xxxxxxx" -w "password" "(&(objectClass=User)(sAMAccountName=debianized)(memberOf=CN=Admins,OU=Admin Group,OU=Lala,DC=lala,DC=cl))" Then, I put the following configuration in squid.conf /usr/lib/squid/squid_ldap_group -b "OU=Lala,DC=lala,DC=cl" -f "(&(sAMAccountName=%u)(objectclass=User)(memberOf=CN=%g,OU=Admin Group,OU=Lala,DC=lala,DC=cl))" -d "debianized@xxxxxxx" -w "password"-h 192.168.80.10" I restarted the service and I tested the new configuration with my account, but I got the following message in the squid log (cache.log): Connected OK group filter '(&(sAMAccountName=debianized)(objectclass=User)(memberOf=CN=Lala,OU=Admin Group,OU=Lala,DC=lala,DC=cl))', searchbase 'OU=Lala,DC=lala,DC=cl' squid_ldap_group WARNING, LDAP search error 'Operations error' any comments? Thanks in advance -- Miguel Angel Ruiz Manzano http://vulcano.mine.nu Computer Science Student - PUCV - Chile
Attachment:
signature.asc
Description: OpenPGP digital signature
