Re: [squid-users] squid_ldap_auth + openldap

From: toblo <squid@dont-contact.us>
Date: Wed, 07 Jan 2004 11:11:07 +0700

I've tried the to add a new attribute but failed, squid_ldap_auth tried
to log with dn="emailaddress=address,ou=domain,o=vpop" which doesn't
exist.

Guess I have to modify squid_ldap_auth then. Thanks Henrik.

Regards,
toblo

----- Original message -----
From: "Henrik Nordstrom" <hno@squid-cache.org>
To: "toblo" <squid@tobloml.mailcan.com>
Date: Tue, 6 Jan 2004 12:48:39 +0100 (CET)
Subject: Re: [squid-users] squid_ldap_auth + openldap

Ok, then you should add an email attribute to the user objects giving the
full email / login name you want the users to use.

Alternatively you can modify squid_ldap_auth and squid_ldap_group to
understand the DN layout, i.e. how to translate user@domain into the DN
format used, or if all your users are in the same domain (or the uid is
not reused between domain) to strip away the domain component.

Regards
Henrik

On Tue, 6 Jan 2004, toblo wrote:

> ldapsearch -b "uid=user1, ou=tld.com, o=vpop" -h your.ldap.server
> gives me
> ldap_sasl_interactive_bind_s: No such attribute
>
> While
> ldapsearch -x -b "uid=user1, ou=tld.com, o=vpop" -h your.ldap.server
> gives me
> version: 2
> #
> # filter: (objectclass=*)
> # requesting: ALL
> #
>
> # user1, tld.com, vpop
> dn: uid=user1, ou=tld.com,o=vpop
> uid: user1
> userPassword:: e2NyeXB0fU91SFF4QlVlLlZIckk=
> qmailUID: 1
> qmailGID: 0
> qmaildomain: user1
> mailMessageStore: /home/vpopmail/domains/tld.com/user1
> mailQuota: NOQUOTA
> objectClass: qmailUser
>
> # search result
> search: 2
> result: 0 Success
>
> # numResponses: 2
> # numEntries: 1
>
>
> ----- Original message -----
> From: "Henrik Nordstrom" <hno@squid-cache.org>
> To: "toblo" <squid@tobloml.mailcan.com>
> Date: Tue, 6 Jan 2004 05:57:03 +0100 (CET)
> Subject: Re: [squid-users] squid_ldap_auth + openldap
>
> On Tue, 6 Jan 2004, toblo wrote:
>
> > Hi Henrik,
> >
> > My user object is look like this:
> > "uid=user1, ou=tld.com, o=vpop"
> >
> > I'd like to be able to log at squid as "user1@tld.com". How can I check
> > the "user1" part to uid and "tld.com" part to ou?
>
> Then your user object need to contain an addribute having user1@tld.com
> as
> value.
>
> What does
>
> ldapsearch -b "uid=user1, ou=tld.com, o=vpop" -h your.ldap.server
>
> return?
>
> Regards
> Henrik
>
Received on Tue Jan 06 2004 - 21:11:16 MST

This archive was generated by hypermail pre-2.1.9 : Sun Feb 01 2004 - 12:00:03 MST