[squid-users] AD Ldap (automatically take the user that is logging on PC)
erdosain9
erdosain9 at gmail.com
Wed Aug 17 20:58:25 UTC 2016
Hi
Squid configured to authenticate with AD with LDAP. this is the relevant
configuration.
# Active Directory
auth_param basic program /usr/lib64/squid/basic_ldap_auth -R -b
"cn=Users,dc=example,dc=lan" -D squid at example.lan -w pass -f
sAMAccountName=%s -v 3 -s sub -h 192.168.1.60
auth_param basic children 10
auth_param basic realm Proxy
auth_param basic credentialsttl 2 hour
external_acl_type ldap_group ttl=360 %LOGIN
/usr/lib64/squid/ext_ldap_group_acl -d -R -b "dc=example,dc=lan" -D
squid at example.lan -w pass -f
"(&(objectclass=person)(sAMAccountName=%v)(memberof=cn=%a,ou=group,dc=example,dc=lan))"
-h 192.168.1.60
acl vip external ldap_group vip
acl control external ldap_group control
It works well. Except I do not want to ask for username and password in the
webbrowser. I want squid automatically take the user that is logging on PC.
What I can do?
greetings and thanks.
--
View this message in context: http://squid-web-proxy-cache.1019090.n4.nabble.com/AD-Ldap-automatically-take-the-user-that-is-logging-on-PC-tp4678994.html
Sent from the Squid - Users mailing list archive at Nabble.com.
More information about the squid-users
mailing list