[squid-users] Squid doesn't notice AD group changes
Marek Greško
mgresko8 at gmail.com
Sun Jan 24 16:02:14 UTC 2021
Hello,
that looks correct. Maybe I would add -B option to the
ext_ldap_group_acl helper to specify basedn for users.
Marek
2021-01-24 10:06 GMT+01:00, heimarbeit123.99 at web.de <heimarbeit123.99 at web.de>:
> Thanks for your replies!
>
> Yes, I did try "external_acl_type wbinfocheck %LOGIN
> /usr/lib/squid/ext_wbinfo_group_acl -K".
>
> So if my fqdn would be "my.domain.com" it would be:
>
> external_acl_type ad_group_member_check ttl=120 %LOGIN
> /usr/lib/squid/ext_ldap_group_acl -d -R -K -S -b "dc=domain,dc=com"
> -D 192.168.1.250 at domain.com -W /etc/squid/ldappass.txt -f
> "(&(sAMAccountName=%u)(memberOf=CN=%g,OU=Groups,DC=domain,DC=com))" -h
> my.domain.com
>
> for 192.168.1.250 being the IP from my Squid Proxy Server, right?
>
> So I could ask for specific groups like this:
> acl Group1 ad_group_member_check TestGroup1
> acl Group2 ad_group_member_check TestGroup2
> and so on.. Am I right?
>
> Thank you so far for your help!
>
> Regads,
> Philipp
>
> --
> Diese Nachricht wurde von meinem Android Mobiltelefon mit WEB.DE Mail
> gesendet.
More information about the squid-users
mailing list