[squid-users] Squid doesn't notice AD group changes
Amos Jeffries
squid3 at treenet.co.nz
Mon Feb 22 09:24:36 UTC 2021
On 22/02/21 9:26 pm, heimarbeit123.99 wrote:
> So I finally tried it on my Squid Proxy.
> I edited the squid like this:
> external_acl_type ad_group_member_check ttl=120 %LOGIN
> /usr/lib/squid/ext_ldap_group_acl -d -R -K -S -b "dc=domain,dc=com" -D
> ProxyUser at domain.com -W /etc/squid/ldappass.txt -f
> "(&(sAMAccountName=%u)(memberOf=CN=%g,OU=Groups,DC=domain,DC=com))" -h
> my.domain.com
> But now I have the problem, that in the squid cache.log is written:
> ext_ldap_group_acl: WARNING: LDAP search error 'Referral'
> So it seems like LDAP can not check the groups but I have no clue why..
> Can someone help?
Please read the documentation for that helper. Specifically pay
attention to what all those command line options do.
<http://www.squid-cache.org/Versions/v4/manuals/ext_ldap_group_acl.html>
Amos
More information about the squid-users
mailing list