Hi out there, After hours of testing the squid_ldap_auth with Novell eDirectory I found the following string working fine for us:
/usr/local/squid/libexec/squid_ldap_auth -b "" -D "cn=name,o=name" -w passwd -h ip-adr -f (&(&(cn=%s)(objectClass=person))(groupMembership=cn=Internet,ou=name,ou= name,o=name)) I will test: Is the user who authorise in the group internet ?? This works very well. No I have a new challenge to solve. I want to check is the authorised user in the group "internet" OR "marketing" OR "normal" OR ... He should be in one !! of these groups, not in all ! I tried: /usr/local/squid/libexec/squid_ldap_auth -b "" -D "cn=name,o=name" -w passwd -h ip-adr -f (&(&(cn=%s)(objectClass=person))(groupMembership=cn=*,ou=name,ou=name,o= name)) But it will not work ! How can I implement this ?? It is possible to work with wildcards in this manner ?? I use Squid 2.5Stable5 Thx in advance. Stefan T.
