Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    MS server LDAP search

    General pfSense Questions
    1
    1
    453
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      cqhhong last edited by

      Hi,
      I am using 2.1.5 Release. transparent mode in use.

      I able to setup squid Guard Group ACL to block particular host accessing some website. I try to implement block particular domain group user in MS Server but fail to do so. Below is my AD design as only use for testing.

      mydomain.lcl
        |-Computers
        |-Domain Controllers
        |-Users

      The testing user is in the default users container. and there is a group InternetUser in the default users container too. And the test user is in the InternetUser group.

      under the Proxy filter Squidguard:ACL client source below is my configuration that i have tested and not working.

      ldapusersearch ldap://192.168.40.2/dc=mydomain,dc=lcl?sAMAccountName?sub?(&(memberof=CN=InternetUser%2cCN=Users%2cDC=mydomain%2cDC=lcl)(sAMAccountName=%s))

      ldapusersearch  ldap://192.168.40.2:3268/dc=mydomain,dc=lcl?sAMAccountName?sub?(&(memberof=CN=InternetUser%2cCN=Users%2cDC=mydomain%2cDC=lcl)(sAMAccountName=%s))

      ldapusersearch ldap://192.168.40.2:3268/dc=mydomain,dc=lcl?sAMAccountName?sub?(&(sAMAccountName=%s)(memberof=CN=InternetUser%2cCN=Users%2cDC=mydomain%2cDC=lcl))

      ldapusersearch ldap://192.168.40.2/dc=mydomain,dc=lcl?sAMAccountName?sub?(&(sAMAccountName=%s)(memberof=CN=InternetUser%2cCN=Users%2cDC=mydomain%2cDC=lcl))

      Please advice

      1 Reply Last reply Reply Quote 0
      • First post
        Last post