André Ribas <[email protected]> writes: > Adam Williams wrote: >> >> >> André Ribas wrote: >>> Ok, then I'll have all the posix users in my ldap base, but how >>> about the samba users? >>> >>> >>> And a lot of samba users... but Samba needs that the user exists in >>> the linux too. So my problem is how to migrate both posix _and_ >>> samba users. >>> >> >> you migrate the posix users first with the migrate_passwd.pl script. >> then set up nss_ldap using /etc/ldap.conf and then edit >> /etc/nsswitch.conf and add ldap to the end of the passwd group and >> shadow lines, so that pam will look for users in the ldap directory, >> then migrate your samba users over using the pdbedit command in your >> first email. be sure to set up migrate_common.ph, you want the >> EXTENDED_SCHEMA=1 so that it will load samba attributes. also you >> will need include /etc/openldap/schema/samba.schema in slapd.conf >> >> > > Thanks a lot for the help. It really solved my problem. > > Now I'm gonna authenticate Squid in Ldap. It seems to bee pretty easy > to do that. My only question is which attributes that squid uses to > authenticate in Ldap? They're the same of posix or samba users? > > I need different passwords for samba and Squid.
Actually, squid provides several helper groups and several auth groups, squid_ldap_auth, squid_ldap_group, just to name two. Your first decision is to define a helper group, either basic_auth or external_acl, based on the helper group you have to define and configure an authentication module. Please read the squid documentation first, and if you still have questions, just ask. -Dieter -- Dieter Klünter | Systemberatung http://www.dpunkt.de/buecher/2104.html sip: +49.180.1555.7770535 GPG Key ID:8EF7B6C6 53°08'09,95"N 10°08'02,42"E
