[squid-users] RE: failure notice

[Suraj Sankaran // Paladion Networks]

Hi,
I'm using the squid_auth_ldap module in squid for squid and ldap
authentication. While running this module from command line I'm not getting
authenticated.
My /var/log/messages gives me this output. This same id I use for email and
the password is not a problem. 
Jul 13 17:15:51 squidUpstream squid_auth_ldap[22946]: squid_auth_ldap ver.
2.0.5, (c) Casper Pedersen 2001-2003
Jul 13 17:15:51 squidUpstream squid_auth_ldap[22946]: - starting...
Jul 13 17:15:51 squidUpstream squid_auth_ldap[22946]: - enough params to
run!
Jul 13 17:15:51 squidUpstream squid_auth_ldap[22946]: - trying to connect
to:
<ipaddress:port>
Jul 13 17:15:56 squidUpstream squid_auth_ldap[22946]: - connected to
ldapServer <ipaddress:port> Jul 13 17:15:56 squidUpstream
squid_auth_ldap[22946]: - ready Jul 13 17:16:02 squidUpstream
squid_auth_ldap[22946]: - got User: user.int Jul 13 17:16:02 squidUpstream
squid_auth_ldap[22946]: - got Password:
thN7T8yCzgGy6
Jul 13 17:16:02 squidUpstream squid_auth_ldap[22946]: - searchstr:
(&(|(objectClass=inetOrgPerson)(objectClass=<removed>))(|(mail=user.int)))
Jul 13 17:16:02 squidUpstream squid_auth_ldap[22946]: - start searching for
mail: user.int
Jul 13 17:16:02 squidUpstream squid_auth_ldap[22946]: - search done Jul 13
17:16:02 squidUpstream squid_auth_ldap[22946]: - found a entry Jul 13
17:16:02 squidUpstream squid_auth_ldap[22946]: - DN found:
mail=user.int,ou=<removed>.o=<removed>
Jul 13 17:16:02 squidUpstream squid_auth_ldap[22946]: - password check for
mail=user.int,ou=<removed>,o=<removed>
Jul 13 17:16:02 squidUpstream squid_auth_ldap[22946]: - password not OK!
Jul 13 17:16:02 squidUpstream squid_auth_ldap[22946]: - usr user.int
-> mail=user.int,ou=<removed>,o=<removed> -> Not Authenticated!
 
Basically, the module is able to find the correct dn, but unable to verify
the password. Currently I'm using basic scheme in my squid.conf file for
this module, but my passwords are hashed at the ldap server. Will this cause
any difference?
Any help would be appreciated.
Thanks and have a great day ahead.


Suraj Sankaran