On Sat, 20 Dec 2003, Keppner, Christoph wrote: > This is my squid_ldap_group - command in squid.conf > > external_acl_type ldap_group %LOGIN /usr/lib/squid/squid_ldap_group -b > dc=dhc-gmbh,dc=com -D [EMAIL PROTECTED] -w SeCrEt -f > "(&(cn=Mitarbeiter)(member=uid=%u)) -F (sAMAccountName=%s) -h 192.168.42.10 > -p 389
The -f argument should be -f "(&(cn=%g)(member=%u)(objectClass=groupOfNames))" The username has already been expanded into a full DN by the -F filter, and you want to be able to reuse the same external_acl_type for different group matches via the acl directive.. Regards Henrik
