I change the filter for: -f "(&(cn=%g)(member=%u))"
Because member is the attribute that the group membership in AD show, but don't work. -----Mensaje original----- De: Henrik Nordstrom [mailto:[EMAIL PROTECTED] Enviado el: Friday, August 29, 2003 20:20 Para: Guillermo Ettlin; [EMAIL PROTECTED] Asunto: Re: [squid-users] Squid ldap_group On Friday 29 August 2003 23.00, Guillermo Ettlin wrote: > external_acl_type ldap_group %LOGIN > /usr/local/libexec/squid_ldap_group -h ldapserver -b > "dc=myldap,dc=edu,dc=uy" -D "cn=auth,cn=users,dc=myldap,dc=edu,dc=uy" > -w pass -f "(&(objectClass=User)(sAMAccountName=%u)(memberOf=%g))" Are you sure the user objects have the memberOf attribute? Usually one looks up group membership by looking for the user within the group, not by looking for the group within the user.. I am not a MS AD user. -- Donations welcome if you consider my Free Squid support helpful. https://www.paypal.com/xclick/business=hno%40squid-cache.org If you need commercial Squid support or cost effective Squid or firewall appliances please refer to MARA Systems AB, Sweden http://www.marasystems.com/, [EMAIL PROTECTED]
