Re: [squid-users] squid_ldap_auth \5c issue
lör 2009-10-31 klockan 21:23 +0800 skrev Hendrik Suantio: > Basically internet explorer or other browser will automatically insert > username "foo\jack" and password the same as login password for the > authentication, but when I check with : No it won't. MSIE can perform authmatic NTLM authentication which results in usernames like that, but when using basic authentication the user has to enter his login. > foo\jack somepassword > > Then, the debug will says that : > user filter 'sAMAccountName=foo\5cjack' This is the same as foo\jack in LDAP syntax. \ is a reserved/special character in LDAP and needs special treatment and is why it shows up as \5c here. \5c in a search filter matches a literal \ in the LDAP field. Regards Henrik
[squid-users] squid_ldap_auth \5c issue
Hi, I am using squid_ldap_auth. I am trying to integrate squid v2.6 stable21 with squid_ldap_auth for authentication with Microsoft AD. Scenario : Client username : jack Microsoft AD Domain : foo Basically internet explorer or other browser will automatically insert username "foo\jack" and password the same as login password for the authentication, but when I check with : /usr/lib/squid/squid_ldap_auth -v 3 -R -d -b "dc=your,dc=domain" -D "cn=Administrator,dc=your,dc=domain" -w "somepassword." -f sAMAccountName=%s -h LDAPServer (press enter) foo\jack somepassword Then, the debug will says that : user filter 'sAMAccountName=foo\5cjack' This is the issue (the convert from "\" to "\5c") that makes every user must enter their username and password manually when ldap ask for authentication, which the user will enter : Username : jack Password : somepassword This method will works perfectly. So, my question is : . Is there any way to make squid_ldap_auth does not convert "\" to "\5c" ? I already googled everywhere and I found no solution except using NTLM as other method, but I prefer squid_ldap_auth because of it's simplicity. I am very glad for your reply. Thank you. ___ Best Regards, Hendrik Suantio Singapore
[squid-users] squid_ldap_auth \5c issue
Hi, I am using squid_ldap_auth. I am trying to integrate squid v2.6 stable21 with squid_ldap_auth for authentication with Microsoft AD. Scenario : Client username : jack Microsoft AD Domain : foo Basically internet explorer or other browser will automatically insert username "foo\jack" and password the same as login password for the authentication, but when I check with : /usr/lib/squid/squid_ldap_auth -v 3 -R -d -b "dc=your,dc=domain" -D "cn=Administrator,dc=your,dc=domain" -w "somepassword." -f sAMAccountName=%s -h LDAPServer (press enter) foo\jack somepassword Then, the debug will says that : user filter 'sAMAccountName=foo\5cjack' This is the issue (the convert from "\" to "\5c") that makes every user must enter their username and password manually when ldap ask for authentication, which the user will enter : Username : jack Password : somepassword This method will works perfectly. So, my question is : . Is there any way to make squid_ldap_auth does not convert "\" to "\5c" ? I already googled everywhere and I found no solution except using NTLM as other method, but I prefer squid_ldap_auth because of it's simplicity. I am very glad for your reply. Thank you. ___ Best Regards, Hendrik Suantio Singapore