Re: [squid-users] squid_ldap_auth + openldap

Tue, 06 Jan 2004 21:13:21 -0800 

I've tried the to add a new attribute but failed, squid_ldap_auth tried
to log with dn="emailaddress=address,ou=domain,o=vpop" which doesn't
exist.

Guess I have to modify squid_ldap_auth then. Thanks Henrik.

Regards,
toblo


----- Original message -----
From: "Henrik Nordstrom" <[EMAIL PROTECTED]>
To: "toblo" <[EMAIL PROTECTED]>
Date: Tue, 6 Jan 2004 12:48:39 +0100 (CET)
Subject: Re: [squid-users] squid_ldap_auth + openldap

Ok, then you should add an email attribute to the user objects giving the 
full email / login name you want the users to use.

Alternatively you can modify squid_ldap_auth and squid_ldap_group to
understand the DN layout, i.e. how to translate [EMAIL PROTECTED] into the DN
format used, or if all your users are in the same domain (or the uid is 
not reused between domain) to strip away the domain component.

Regards
Henrik


On Tue, 6 Jan 2004, toblo wrote:

>    ldapsearch -b "uid=user1, ou=tld.com, o=vpop" -h your.ldap.server   
> gives me
>    ldap_sasl_interactive_bind_s: No such attribute
> 
> While
>    ldapsearch -x -b "uid=user1, ou=tld.com, o=vpop" -h your.ldap.server   
> gives me
>    version: 2
>    #
>    # filter: (objectclass=*)
>    # requesting: ALL
>    #
>  
>    # user1, tld.com, vpop
>    dn: uid=user1, ou=tld.com,o=vpop
>    uid: user1
>    userPassword:: e2NyeXB0fU91SFF4QlVlLlZIckk=
>    qmailUID: 1
>    qmailGID: 0
>    qmaildomain: user1
>    mailMessageStore: /home/vpopmail/domains/tld.com/user1
>    mailQuota: NOQUOTA
>    objectClass: qmailUser
>  
>    # search result
>    search: 2
>    result: 0 Success
>  
>    # numResponses: 2
>    # numEntries: 1
> 
> 
> ----- Original message -----
> From: "Henrik Nordstrom" <[EMAIL PROTECTED]>
> To: "toblo" <[EMAIL PROTECTED]>
> Date: Tue, 6 Jan 2004 05:57:03 +0100 (CET)
> Subject: Re: [squid-users] squid_ldap_auth + openldap
> 
> On Tue, 6 Jan 2004, toblo wrote:
> 
> > Hi Henrik,
> > 
> > My user object is look like this:
> > "uid=user1, ou=tld.com, o=vpop"
> > 
> > I'd like to be able to log at squid as "[EMAIL PROTECTED]". How can I check
> > the "user1" part to uid and "tld.com" part to ou?
> 
> Then your user object need to contain an addribute having [EMAIL PROTECTED]
> as 
> value.
> 
> What does
> 
>    ldapsearch -b "uid=user1, ou=tld.com, o=vpop" -h your.ldap.server
> 
> return?
> 
> Regards
> Henrik
>

Reply via email to