LDAP GroupCheck - Squid

[mfuhrmann]

Hello!

i've tried to grant a specific ldap group (ADS) called "Internet" access to the internet. Squid provides a tool called squid_ldap_group to check ldap memberships.
This is my command:

[quote]/usr/lib64/squid/squid_ldap_group -b "cn=Internet,ou=User_Gruppen,dc=test,dc=local" -D "cn=ldap,ou=Users,dc=test,dc=local" -w 'PASSWORD' -f "(&(objectClass=person)(sAMAccountName=%u)(memberOf=cn=%g,ou=User_Gruppen,dc=test,dc=local))" -h srv-dc02.test.local -K -R[/quote]

But i get just a ERR instead of OK, when i enter a username (who is member of the group "Internet").

Can anybody help me to build this call?

Thank you very much!

--
Marcel

[Moderator edited to replace [i]code[/i] tags with [i]quote[/i] tags, thus resolving the 'off the right hand edge of the screen' effect.]