LDAP group check

Issues related to applications and software problems
Post Reply
mfuhrmann
Posts: 9
Joined: 2012/10/25 07:13:15

LDAP group check

Post by mfuhrmann » 2013/01/22 07:34:56

Good morning,

i'm trying to to configure squid to use a ldap (ADS 2008) group check to give access to the internet. The user TESTUSER is in OU3. The group INTERNET is in a OU called USERGROUPS. TESTUSER is member of INTERNET.
But it doesn't work.

[code]/usr/lib64/squid/squid_ldap_group -d -v3 -b 'ou=OU3,ou=OU2,ou=OU1,dc=DOMAIN,dc=LOCAL' -f \
'(&(sAMAccountName=%v)(memberOf=cn=%a,ou=USERGRUPPEN,dc=DOMAIN,dc=LOCAL))' -D cn=LDAP,cn=USERS,dc=DOMAIN,dc=LOCAL \
-w PASSWORT -h DOMAINCONTROLLER
testuser internet
Connected OK
group filter '(&(sAMAccountName=testuser) (memberOf=cn=internet,ou=USERGROUPS,dc=DOMAIN,dc=LOCAL))', searchbase 'ou=OU3,ou=OU2,ou=OU1,dc=DOMAIN,dc=LOCAL'
ERR[/code]

Can somebody please help me?

Thanks a lot.

--
Marcel

mfuhrmann
Posts: 9
Joined: 2012/10/25 07:13:15

Re: LDAP group check

Post by mfuhrmann » 2013/02/01 21:34:34

Here the solution:

[code]/usr/lib64/squid/squid_ldap_group -R -K -b "dc=domain,dc=local" -D administrator -w "AdminPW" \
-f "(&(objectclass=person)(sAMAccountName=%v) \
(memberof=cn=%g,ou=UserGroups,dc=domain,dc=local))" -h domaincontroller[/code]

Thanks for help.

Post Reply

Return to “CentOS 6 - Software Support”