Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Squid 2.7 squid_ldap_auth windows 2008r2 ad GUI wrong?

    Scheduled Pinned Locked Moved pfSense Packages
    1 Posts 1 Posters 1.9k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • perikoP Offline
      periko
      last edited by

      Hi.

      I'm working with squid and squid_auth_ldap, the point is to contact my windows 2008r2 Active Directory and get the user from there.
      I read a lot of docs about, now I test the settings first in console and works.

      I manually setup squid.conf and works.

      Now, I try to setup the auth from the GUI but the settings pfsense use are this ones:

      auth_param basic program /usr/local/libexec/squid/squid_ldap_auth -v 3 -b "dc=mydomain,dc=local" -D "cn=Administrator,cn=Users,dc=your,dc=domain,dc=com" -w "mypassword" -f "sAMAccountName=%s" -u  -P 192.168.50.99:389

      I even have to add the

      ""

      .

      This settings won't work for me, every browser cannot authenticate user, squid show this in cache.log:

      squid_ldap_auth: WARNING, could not bind to binddn 'Can't contact LDAP server'

      Now what settings work for me?

      squid_ldap_auth -R -b "dc=mydomain,dc=local" -D "cn=Administrator,cn=Users,dc=squid,dc=local" -w "mypassword" -f sAMAccountName=%s -h 192.168.50.99

      pfsense 2.0.3
      squid 2.7.x
      windows 2008r2 updated and running pure windows 2008 not mixed.

      Does GUI is wrong?

      I create a batch that every time the system start change this settings and done.

      Necesitan Soporte de Pfsense en México?/Need Pfsense Support in Mexico?
      www.bajaopensolutions.com
      https://www.facebook.com/BajaOpenSolutions
      Quieres aprender PfSense, visita mi canal de youtube:
      https://www.youtube.com/c/PedroMorenoBOS

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.