Re: [squid-users] squid_ldap_auth problem after W2003 upgrade

Henrik Nordstrom Thu, 14 Oct 2004 01:13:02 -0700

On Wed, 13 Oct 2004, Mark Krawec wrote:

ldapsearch -D [EMAIL PROTECTED]  -w password -b "DC=scif,DC=com" -H
ldaps://fddc02.scif.com:636/ -S /usr/local/ssl/certs -x
"(SamAccountName=Squid1)" cn
version: 2

#
# filter: (SamAccountName=Squid1)
# requesting: cn
#

# Squid1 Proxy, FD, Fairfield, scif, com
dn: CN=Squid1 Proxy,OU=FD,OU=Fairfield,DC=scif,DC=com
cn: Squid1 Proxy

echo "squid password" | /usr/local/squid/libexec/squid_ldap_auth -H
ldaps://fddc02.scif.com:636/  -D "squid" -w "password" -P -b "DC=scif,DC=com"
-f "(SamAccountName=Squid1)"
squid_ldap_auth: WARNING, LDAP search error 'Operations error'
ERR

The search bind DN is not correct, and does not match your successful ldapsearch

To be least confusing your should specify a LDAP DN in both. Relying on the LDAP server to understand shorthand aliases like [EMAIL PROTECTED] can be a little confusing.

Regards
Henrik

Re: [squid-users] squid_ldap_auth problem after W2003 upgrade

Reply via email to