Because most of user accounts are located in AD, I really want to know
whether the modules "squid_ldap_auth" and "squid_ldap_group" support
failover. Thanks for your reply, Guido.
Best Regards,
Cowking
Guido Lorenzutti wrote:
>
> To do this... i don't use squid_ldap_group.
> I don't have a AD, but I have an ldap domain and I use the unix_group
> and I configure the pam_ldap to use more than one ldap server... and
> it works just fine.
>
> Cowking <big_bulls_at_yahoo.com> escribió:
>
>>
>> Dear All,
>>
>> I am now using a squid proxy server which use ldap ( Windows Server 2003
>> Active Directory ) as authentication. I have use the squid module
>> squid_ldap_group to achieve this. The following line shows the
>> configuration:
>>
>> external_acl_type InetGroup %LOGIN /usr/lib/squid/squid_ldap_group -b
>> "dc=example,dc=com" -D "cn=ldap,cn=users,dc=example,dc=com" -h
>> example.com
>> -w password -f
>> "(&(objectclass=person)(sAMAccountName=%v)(memberof=cn=%a,ou=group,dc=example,dc=com))"
>> -R
>>
>> I define the AD with "exmaple.com" rather than IP address. As I terminate
>> the network connection of the first AD server. The proxy clients cannot
>> authenticate by using LDAP. It seems that the proxy clients didn't know
>> how
>> to authenticate with the second AD server.
>>
>> Would you provide some information if squid supports this function?
>>
>> Any help would be greatly appreciated.
>>
>> Thanks and Regards,
>> Cowking
>>
>> --
>> View this message in context:
>> http://old.nabble.com/Squid-with-LDAP-server-failover-tp26312618p26312618.html
>> Sent from the Squid - Users mailing list archive at Nabble.com.
>>
>>
>
>
>
>
-- View this message in context: http://old.nabble.com/Squid-with-LDAP-server-failover-tp26312618p26313332.html Sent from the Squid - Users mailing list archive at Nabble.com.Received on Thu Nov 12 2009 - 04:37:19 MST
This archive was generated by hypermail 2.2.0 : Thu Nov 12 2009 - 12:00:03 MST