Hi and thanks for all!
Almost is work, but i have another problem, i get this on
/var/log/squid3/cache.log:
user filter 'uid=user1', searchbase 'dc=something,dc=com'
2008/07/03 08:50:42| helperHandleRead: unexpected read from
digestauthenticator #1, 16 bytes 'ERR No such user'
2008/07/03 08:50:42| helperHandleRead: unexpected read from
digestauthenticator #1, 1 bytes ' '
It's seemingly like squid3 cann't make a sub search under a
begining of the tree, because the user are in:
uid=user1,ou=someOU,...,o=someDomain,dc=something,dc=com
Again Thanks!
Henrik Nordstrom escribió:
> On ons, 2008-07-02 at 14:52 -0430, Edward Ortega wrote:
>
>
>> Ok, i store on the '*street*' attribute something like you said (
>> MD5(username + ":" + realm + ":" + password) ), have i to store the
>> "realm" argument on other attribute to squid understand the hash?
>>
>> #/usr/lib/squid3/digest_ldap_auth -v 3 -b 'dc=something,dc=com' -F
>> '(&(objectclass=posixAccount)(uid=%s))' -H 'ldap://ldap' -A '*street*'
>> -l -d
>>
>
> digest_ldap_auth expects an attribute with either
>
> a) plain-text password
>
> or when usingthe -e command line option
>
> b) realm:hash
>
> If encrypted mode is used (realm:hash) then the attribute may be
> multi-valued with one value per supported realm.
>
> Regards
> Henrik
>
