Looks fine in principle, but I cannot give any advice on the Group LDAP auth
extension. Not familiar with it, and not using it. Have other means for group
authentication.
Regards
Henrik Nordström
On Saturday 24 November 2001 14.37, FiFO D' POOH wrote:
> > acl morning_group ldap_auth static 'AM Surfers'
> > acl afternoon_group ldap_auth static 'PM Surfers'
> > acl unlimited_group ldap_auth static 'Unlimited Surfers'
> > acl morning time 07:00-13:00
> > acl afternoon time 13:00-17:00
> >
> > http_access allow manager localhost
> > http_access deny manager
> > http_access deny !Safe_ports
> > http_access deny CONNECT !SSL_ports
> > http_access allow denet_sites
> >
> > http_access allow morning_group morning
> > http_access deny morning_group
> > http_access allow afternoon_group afternoon
> > http_access deny afternoon_group
> > http_access allow unlimited_group morning
> > http_access allow unlimited_group afternoon
> > http_access deny all
> >
> > -------------
> >
> > gud day!
> >
> > i do have problem with this acl configuration.
> > almost 2 weeks of fixing this stuff but yet
> > this won't work. =(
> >
> > i do have 3 set of users which can access the web
> > depending on the schedule defined in the acl.
> >
> > 1. if any of the users from the AM Surfers will
> > access in the morning time, he will be permitted.
> > but when any of the users from the Unlimited Surfers
> > will access of that same time, he wont be permitted
> > because squid can't find it from the ldap list(NONE
> > is found in the access.log for this user).
> >
> > 2. another situation is if any of the users from the
> > PM Surfers will access in the afternoon time, he
> > wont be permitted. and also when any of the users from
> > the Unlimited Surfers will access of that same time, he
> > wont be also permitted because squid can't find it from the
> > ldap list(NONE is found in the access.log for this user).
> >
> > thank you in advance. i really need your help.
> >
> > pipo
-- MARA Systems AB Giving you basic free Squid support Priority support or Squid enhancements available on requestReceived on Sat Nov 24 2001 - 08:03:25 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:04:29 MST