squid3 squid_ldap_auth ad logs - Linux Forums

Register|FAQ|Member List|Calendar|Unanswered Posts|Forum Rules|Today's Posts|Advanced Search |

Welcome to Linux Forums! With a comprehensive Linux Forum, information on various types of Linux software and many Linux Reviews articles, we have all the knowledge you need a click away, or accessible via our knowledgeable members.

Write an article for LinuxForums Today! Win Great Prizes!

New to Linux Forums? Register here for free!

		Linux Forums > GNU Linux Zone > Servers > squid3 squid_ldap_auth ad logs

Servers Anything server related, Apache, MySQL, Samba, server security, sendmail, exim, etc

Site Navigation
Linux Articles
Linux Forums
Linux Downloads
Linux Hosting
Free Magazines
Job Board
IRC Chat
RSS Feeds

Linux Forum Topics
Linux Forums
Linux Forums Site News
Your Distro
Redhat / Fedora Linux Help Ubuntu Help SuSE Linux Help Mandriva Linux Help Slackware Linux Help Debian Linux Help Gentoo Linux Help Knoppix Help Forum Other Distributions
Linux Resources
Linux Tutorials, HOWTO's & Reference Material
GNU Linux Zone
Wireless Internet Linux Newbie Installation Misc Linux Applications Servers Linux Networking Peripherals / Hardware Linux Desktop / X-Windows Linux Programming & Scripting Gaming / Games / Multimedia / Entertainment Linux Security The Linux Kernel Linux On Laptops / Netbooks / Minibooks Wine Art & Imaging in Linux
The Community
The Coffee Lounge Comments / Feedback / Suggestions Everything BSD

Reply

12-03-2008	#1 (permalink)
insurin Just Joined! Join Date: Dec 2008 Posts: 20	squid3 squid_ldap_auth ad logs server = ubuntu 8.10 squid 3 windows 2003 active diretory Problem I want to log web usage on squid to AD usernames So far I have fresh install of squid3. I have changed acl localnet src 192.168.1.0/24 http_allow access localnet This has allowed me browse the web through squid. I can see traffic and logs being generated in access.log. My next step is to log by AD username. I have read many differrent ways of achieving this. I want to do it with squid_ldap_auth I know I need to edit the settings in auth_param basic program /usr/lib/squid/squid_ldap_auth....... I need help at this point.

12-03-2008	#2 (permalink)
insurin Just Joined! Join Date: Dec 2008 Posts: 20	Just to help out 2003 AD server name = server1 (192.168.1.1) domain = mycompany.com admin username = administrator password = mypassword ou = staff domain admins = user1, administrator lets say I try this /usr/lib/squid/squid_ldap_auth -b "dc=mycompany,dc=com" -f "uid=%s" -h 192.168.1.1 (at this point it seems to be waiting for some input, so I type) USERID administrator PASSWORD mypassword and I receive squid_ldap_auth: WARNING, LDAP search error 'Operations error' ERR Success if I try this ./squid_ldap_auth -R -b "dc=mycompany,dc=com" -D "CN=user1,OU=Staff,DC=mycompany,DC=com" -w "mypassword" -f sAMAccountName=%s -h 192.168.1.1 USERID user1 PASSWORD mypassword I get this message ERR success

12-03-2008	#3 (permalink)
insurin Just Joined! Join Date: Dec 2008 Posts: 20	I have edited these settings in squid.conf auth_param basic program /squid_ldap_auth -R -b "dc=mycompany,dc=com" -D "CN=user1,OU=Staff,DC=mycompany,DC=com" -w "mypassword" -f sAMAccountName=%s -h 192.168.1.1 auth_param basic children 5 auth_param basic realm Your Organisation Name auth_param basic credentialsttl 5 minutes acl ldapauth proxy_auth REQUIRED #http_access allow localnet http_access allow localhost http_access allow ldapauth When loading up Internet Explorer I am being prompted for username/passowrd and I can browse the web via squid. Does anyone know how to prevent the logon box prompting users and just take the logon credentials of the Windows client pc's for a seemless connection. I don't want users having to enter username and password for every workstation they use.

12-03-2008	#4 (permalink)
jledhead Linux Engineer Join Date: Oct 2004 Location: North Carolina Posts: 1,030	now you need ntlm, something like this Setting up Squid for NTLM Auth \| Flat Mountain squid ntlm - Google Search

Reply

« Previous Thread | Next Thread »

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Posting Rules
You may not post new threads You may not post replies You may not post attachments You may not edit your posts BB code is On Smilies are On [IMG] code is On HTML code is Off Trackbacks are Off Pingbacks are Off Refbacks are Off

Free Magazines

Run Your Own Web Server Using Linux & Apache - Free 191 Page Preview
Learn about everything you'll need to build and maintain your Linux servers, and to deploy Web applications to them.
subscribe

Open Source Security Myths Dispelled
Dispel the five major myths surrounding Open Source Security and gain the tools necessary to make a truly informed decision for your IT organization
subscribe

InformationWeek
InformationWeek is the only newsweekly you'll need to stay on top of the latest developments in information technology.
subscribe

All times are GMT. The time now is 08:34 AM.