Squid ldap auth problem..

[jgreyna]

Hi All,

I have some problems using Zimbra's LDAP to squid authentication.

I checked the how to from this site Configure squid for LDAP authentication using squid_ldap_auth helper and try to test using squid_ldap_auth helper and my server information:

/usr/lib/squid/squid_ldap_auth -v 3 -b "dc=zimbra,dc=grupotusa,dc=com" -f "(&(uid=%s)(objectClass=*))" -h 192.168.3.218
testuser testpwd
squid_ldap_auth: WARNING, LDAP search error 'No such object'
ERR Success

it seems that the object was no found in the directory, then I change the command and as:

/usr/lib/squid/squid_ldap_auth -v 3 -b "dc=grupotusa,dc=mx" -f "(&(uid=%s)(objectClass=*))" -h 192.168.3.218
testuser testpwd
ERR Success

Now I don't get the search error, but I can't validate the user.

I'm running Zimbra on Centos, that's the version:

Release 6.0.5_GA_2213.RHEL5_20100202220948 CentOS5 FOSS edition.

Anyone can share me any tip?

Note: The domain,user and passwords are valid on the server and I can login to read email.

[jgreyna]

I was researching about this issue and found the next:

Anonymous Searches
For new installations of ZCS 6.0, anonymous searches of the directory are
disabled. (Bug 15378) When you upgrade to 6.0, anonymous searches of the
directory are enabled, matching previous release behavior.
To disable anonymous search after upgrading, on each LDAP server, as
zimbra run /opt/zimbra/libexec/zmldapanon -d
To enable anonymous access at any point after it is disabled, on each LDAP
server run /opt/zimbra/libexec/zmldapanon -e
Important: Enabling anonymous binds is not recommended as it may expose
data not intended for anonymous access

I activated the anonymous searches and it works.

Regards.

[mbayram]

Searching about this issue for a few days. This solution worked for me! Thank you.

[marciadepaula]

This worked for me:

Quote:

/usr/lib/squid/ldap_auth -v 3 -b "ou=people,dc=something,dc=com" -f "(&(uid=%s)(objectClass=zimbraAccount))" -h MyLDAPHost -D "uid=zimbra,cn=admins,cn=zimbra" -w PASSWORD